|
 |
118fca |
From 491e5500b6b3913f531574208274358a2df88659 Mon Sep 17 00:00:00 2001
|
|
|
118fca |
From: ikerexxe <ipedrosa@redhat.com>
|
|
|
118fca |
Date: Mon, 5 Oct 2020 10:41:29 +0200
|
|
|
118fca |
Subject: [PATCH] pam_namespace: polyinstantiation refer to gdm doc
|
|
|
118fca |
|
|
|
118fca |
modules/pam_namespace/pam_namespace.8.xml: delete obsolete information
|
|
|
118fca |
about polyinstantiation and refer to gdm's documentation.
|
|
|
118fca |
|
|
|
118fca |
Resolves: https://bugzilla.redhat.com/show_bug.cgi?id=1861841
|
|
|
118fca |
---
|
|
|
118fca |
modules/pam_namespace/pam_namespace.8.xml | 41 ++---------------------
|
|
|
118fca |
1 file changed, 2 insertions(+), 39 deletions(-)
|
|
|
118fca |
|
|
|
118fca |
diff --git a/modules/pam_namespace/pam_namespace.8.xml b/modules/pam_namespace/pam_namespace.8.xml
|
|
|
118fca |
index f0f80d33..57c44c4b 100644
|
|
|
118fca |
--- a/modules/pam_namespace/pam_namespace.8.xml
|
|
|
118fca |
+++ b/modules/pam_namespace/pam_namespace.8.xml
|
|
|
118fca |
@@ -343,45 +343,8 @@
|
|
|
118fca |
</para>
|
|
|
118fca |
|
|
|
118fca |
<para>
|
|
|
118fca |
- To use polyinstantiation with graphical display manager gdm, insert the
|
|
|
118fca |
- following line, before exit 0, in /etc/gdm/PostSession/Default:
|
|
|
118fca |
- </para>
|
|
|
118fca |
-
|
|
|
118fca |
- <para>
|
|
|
118fca |
- /usr/sbin/gdm-safe-restart
|
|
|
118fca |
- </para>
|
|
|
118fca |
-
|
|
|
118fca |
- <para>
|
|
|
118fca |
- This allows gdm to restart after each session and appropriately adjust
|
|
|
118fca |
- namespaces of display manager and the X server. If polyinstantiation
|
|
|
118fca |
- of /tmp is desired along with the graphical environment, then additional
|
|
|
118fca |
- configuration changes are needed to address the interaction of X server
|
|
|
118fca |
- and font server namespaces with their use of /tmp to create
|
|
|
118fca |
- communication sockets. Please use the initialization script
|
|
|
118fca |
- <filename>/etc/security/namespace.init</filename> to ensure that
|
|
|
118fca |
- the X server and its clients can appropriately access the
|
|
|
118fca |
- communication socket X0. Please refer to the sample instructions
|
|
|
118fca |
- provided in the comment section of the instance initialization script
|
|
|
118fca |
- <filename>/etc/security/namespace.init</filename>. In addition,
|
|
|
118fca |
- perform the following changes to use graphical environment with
|
|
|
118fca |
- polyinstantiation of /tmp:
|
|
|
118fca |
- </para>
|
|
|
118fca |
-
|
|
|
118fca |
- <para>
|
|
|
118fca |
- <literallayout>
|
|
|
118fca |
- 1. Disable the use of font server by commenting out "FontPath"
|
|
|
118fca |
- line in /etc/X11/xorg.conf. If you do want to use the font server
|
|
|
118fca |
- then you will have to augment the instance initialization
|
|
|
118fca |
- script to appropriately provide /tmp/.font-unix from the
|
|
|
118fca |
- polyinstantiated /tmp.
|
|
|
118fca |
- 2. Ensure that the gdm service is setup to use pam_namespace,
|
|
|
118fca |
- as described above, by modifying /etc/pam.d/gdm.
|
|
|
118fca |
- 3. Ensure that the display manager is configured to restart X server
|
|
|
118fca |
- with each new session. This default setup can be verified by
|
|
|
118fca |
- making sure that /usr/share/gdm/defaults.conf contains
|
|
|
118fca |
- "AlwaysRestartServer=true", and it is not overridden by
|
|
|
118fca |
- /etc/gdm/custom.conf.
|
|
|
118fca |
- </literallayout>
|
|
|
118fca |
+ To use polyinstantiation with graphical display manager gdm, please refer
|
|
|
118fca |
+ to gdm's documentation.
|
|
|
118fca |
</para>
|
|
|
118fca |
|
|
|
118fca |
</refsect1>
|
|
|
118fca |
--
|
|
|
118fca |
2.26.2
|
|
|
118fca |
|