[Touch-packages] [Bug 1292324] Re: Support non-root X
Launchpad has imported 4 comments from the remote bug at https://bugzilla.redhat.com/show_bug.cgi?id=1078808. If you reply to an imported comment from within Launchpad, your comment will be sent to the remote bug automatically. Read more about Launchpad's inter-bugtracker facilities at https://help.launchpad.net/InterBugTracking. On 2014-03-20T10:45:11+00:00 Hans wrote: Hi, Please add support for starting X inside a user session, so the Xorg can work without being suid root, for more details see: https://fedoraproject.org/wiki/Changes/XorgWithoutRootRights An upstream bug for this is here: https://bugs.launchpad.net/lightdm/+bug/1292324 Thanks & Regards, Hans Reply at: https://bugs.launchpad.net/lightdm/+bug/1292324/comments/3 On 2017-05-18T19:50:09+00:00 leigh wrote: Bump, any progress in the last 3 years? Reply at: https://bugs.launchpad.net/lightdm/+bug/1292324/comments/14 On 2017-05-19T15:31:21+00:00 Fedora wrote: This package has changed ownership in the Fedora Package Database. Reassigning to the new owner of this component. Reply at: https://bugs.launchpad.net/lightdm/+bug/1292324/comments/15 On 2017-07-05T20:38:24+00:00 Fedora wrote: This package has changed ownership in the Fedora Package Database. Reassigning to the new owner of this component. Reply at: https://bugs.launchpad.net/lightdm/+bug/1292324/comments/16 ** Changed in: lightdm (Fedora) Status: Unknown => Confirmed ** Changed in: lightdm (Fedora) Importance: Unknown => Undecided -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to lightdm in Ubuntu. https://bugs.launchpad.net/bugs/1292324 Title: Support non-root X Status in Light Display Manager: Triaged Status in lightdm package in Ubuntu: Triaged Status in lightdm package in Debian: Confirmed Status in lightdm package in Fedora: Confirmed Bug description: Support running X as an unprivileged user. Currently X servers are run as root means a large complex process has access to services it might not need (i.e. potential security and stability problems). It would be nice to run each X server as either an unprivileged user or in the session they are being used in. Logind provides a system for sharing access to the display and input devices so this can be done - this seems like the most likely implementation of non-root X. For more information see Hans de Goede request: http://lists.freedesktop.org/archives/lightdm/2014-March/000539.html To manage notifications about this bug go to: https://bugs.launchpad.net/lightdm/+bug/1292324/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1292324] Re: Support non-root X
I am interested in this feature, just not working on it :) >From what I understand reading the comments here the correct place to do this is inside session-child.c - i.e. run the X server process after dropping privileges but before the session is run. A new XServerInSession class will probably have to be made so LightDM is happy though the work will be done inside session-child.c. This will probably be a bit odd in the LightDM architecture, so some refactoring is probably suggested to make these changes fit in a bit better (though that can be done later). -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to lightdm in Ubuntu. https://bugs.launchpad.net/bugs/1292324 Title: Support non-root X Status in Light Display Manager: Triaged Status in lightdm package in Ubuntu: Triaged Status in lightdm package in Debian: Confirmed Status in lightdm package in Fedora: Unknown Bug description: Support running X as an unprivileged user. Currently X servers are run as root means a large complex process has access to services it might not need (i.e. potential security and stability problems). It would be nice to run each X server as either an unprivileged user or in the session they are being used in. Logind provides a system for sharing access to the display and input devices so this can be done - this seems like the most likely implementation of non-root X. For more information see Hans de Goede request: http://lists.freedesktop.org/archives/lightdm/2014-March/000539.html To manage notifications about this bug go to: https://bugs.launchpad.net/lightdm/+bug/1292324/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1292324] Re: Support non-root X
Robert, I know you weren't interested in this but would review patches if needed. Could you point people to the right directions on where to drop privileges before running X server and stuff like that? -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to lightdm in Ubuntu. https://bugs.launchpad.net/bugs/1292324 Title: Support non-root X Status in Light Display Manager: Triaged Status in lightdm package in Ubuntu: Triaged Status in lightdm package in Debian: Confirmed Status in lightdm package in Fedora: Unknown Bug description: Support running X as an unprivileged user. Currently X servers are run as root means a large complex process has access to services it might not need (i.e. potential security and stability problems). It would be nice to run each X server as either an unprivileged user or in the session they are being used in. Logind provides a system for sharing access to the display and input devices so this can be done - this seems like the most likely implementation of non-root X. For more information see Hans de Goede request: http://lists.freedesktop.org/archives/lightdm/2014-March/000539.html To manage notifications about this bug go to: https://bugs.launchpad.net/lightdm/+bug/1292324/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1292324] Re: Support non-root X
** Bug watch added: Red Hat Bugzilla #1078808 https://bugzilla.redhat.com/show_bug.cgi?id=1078808 ** Also affects: lightdm (Fedora) via https://bugzilla.redhat.com/show_bug.cgi?id=1078808 Importance: Unknown Status: Unknown -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to lightdm in Ubuntu. https://bugs.launchpad.net/bugs/1292324 Title: Support non-root X Status in Light Display Manager: Triaged Status in lightdm package in Ubuntu: Triaged Status in lightdm package in Debian: Confirmed Status in lightdm package in Fedora: Unknown Bug description: Support running X as an unprivileged user. Currently X servers are run as root means a large complex process has access to services it might not need (i.e. potential security and stability problems). It would be nice to run each X server as either an unprivileged user or in the session they are being used in. Logind provides a system for sharing access to the display and input devices so this can be done - this seems like the most likely implementation of non-root X. For more information see Hans de Goede request: http://lists.freedesktop.org/archives/lightdm/2014-March/000539.html To manage notifications about this bug go to: https://bugs.launchpad.net/lightdm/+bug/1292324/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
Re: [Touch-packages] [Bug 1292324] Re: Support non-root X
Hans et al., I'm observing GDM behaviour with non-root Xorg. I see that GDM by default keeps the greeter session alive, switching to another VT in order to start a new user session. Shouldn't it break for non-seat0 seats, since they can't handle multiple sessions due to lack of VT support? I think it would better for LightDM to have the default (or optional) behaviour of quitting greeter session and reusing its VT for the next user session. It implies terminating greeter's Xorg before launching user's one. Em qua, 20 de jan de 2016 às 16:15, Bug Watch Updater < 1292...@bugs.launchpad.net> escreveu: > ** Changed in: lightdm (Debian) >Status: Unknown => Confirmed > > -- > You received this bug notification because you are subscribed to Light > Display Manager. > https://bugs.launchpad.net/bugs/1292324 > > Title: > Support non-root X > > Status in Light Display Manager: > Triaged > Status in lightdm package in Ubuntu: > Triaged > Status in lightdm package in Debian: > Confirmed > > Bug description: > Support running X as an unprivileged user. > > Currently X servers are run as root means a large complex process has > access to services it might not need (i.e. potential security and > stability problems). It would be nice to run each X server as either > an unprivileged user or in the session they are being used in. > > Logind provides a system for sharing access to the display and input > devices so this can be done - this seems like the most likely > implementation of non-root X. > > For more information see Hans de Goede request: > http://lists.freedesktop.org/archives/lightdm/2014-March/000539.html > > To manage notifications about this bug go to: > https://bugs.launchpad.net/lightdm/+bug/1292324/+subscriptions > -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to lightdm in Ubuntu. https://bugs.launchpad.net/bugs/1292324 Title: Support non-root X Status in Light Display Manager: Triaged Status in lightdm package in Ubuntu: Triaged Status in lightdm package in Debian: Confirmed Bug description: Support running X as an unprivileged user. Currently X servers are run as root means a large complex process has access to services it might not need (i.e. potential security and stability problems). It would be nice to run each X server as either an unprivileged user or in the session they are being used in. Logind provides a system for sharing access to the display and input devices so this can be done - this seems like the most likely implementation of non-root X. For more information see Hans de Goede request: http://lists.freedesktop.org/archives/lightdm/2014-March/000539.html To manage notifications about this bug go to: https://bugs.launchpad.net/lightdm/+bug/1292324/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1292324] Re: Support non-root X
** Changed in: lightdm (Debian) Status: Unknown => Confirmed -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to lightdm in Ubuntu. https://bugs.launchpad.net/bugs/1292324 Title: Support non-root X Status in Light Display Manager: Triaged Status in lightdm package in Ubuntu: Triaged Status in lightdm package in Debian: Confirmed Bug description: Support running X as an unprivileged user. Currently X servers are run as root means a large complex process has access to services it might not need (i.e. potential security and stability problems). It would be nice to run each X server as either an unprivileged user or in the session they are being used in. Logind provides a system for sharing access to the display and input devices so this can be done - this seems like the most likely implementation of non-root X. For more information see Hans de Goede request: http://lists.freedesktop.org/archives/lightdm/2014-March/000539.html To manage notifications about this bug go to: https://bugs.launchpad.net/lightdm/+bug/1292324/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1292324] Re: Support non-root X
** Bug watch added: Debian Bug tracker #809067 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809067 ** Also affects: lightdm (Debian) via http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=809067 Importance: Unknown Status: Unknown -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to lightdm in Ubuntu. https://bugs.launchpad.net/bugs/1292324 Title: Support non-root X Status in Light Display Manager: Triaged Status in lightdm package in Ubuntu: Triaged Status in lightdm package in Debian: Unknown Bug description: Support running X as an unprivileged user. Currently X servers are run as root means a large complex process has access to services it might not need (i.e. potential security and stability problems). It would be nice to run each X server as either an unprivileged user or in the session they are being used in. Logind provides a system for sharing access to the display and input devices so this can be done - this seems like the most likely implementation of non-root X. For more information see Hans de Goede request: http://lists.freedesktop.org/archives/lightdm/2014-March/000539.html To manage notifications about this bug go to: https://bugs.launchpad.net/lightdm/+bug/1292324/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1292324] Re: Support non-root X
** Also affects: lightdm (Ubuntu) Importance: Undecided Status: New ** Changed in: lightdm (Ubuntu) Status: New => Triaged ** Changed in: lightdm (Ubuntu) Importance: Undecided => Wishlist -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to lightdm in Ubuntu. https://bugs.launchpad.net/bugs/1292324 Title: Support non-root X Status in Light Display Manager: Triaged Status in lightdm package in Ubuntu: Triaged Bug description: Support running X as an unprivileged user. Currently X servers are run as root means a large complex process has access to services it might not need (i.e. potential security and stability problems). It would be nice to run each X server as either an unprivileged user or in the session they are being used in. Logind provides a system for sharing access to the display and input devices so this can be done - this seems like the most likely implementation of non-root X. For more information see Hans de Goede request: http://lists.freedesktop.org/archives/lightdm/2014-March/000539.html To manage notifications about this bug go to: https://bugs.launchpad.net/lightdm/+bug/1292324/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp