Re: [X2Go-User] [INTERNET] Folder sharing SOLVED

[BOTZ Franck (Administrateur Systèmes et Réseaux) - DDT 67/SIDSIC/Pôle Infra]

Hi !

After a long time, sharing folder works on HP T620.
On the t620 :
  * activate SSH server :
    * /usr/bin/mclient set root/sshd/enabled 1
    * /usr/bin/mcleint set root/sshd/userAccess 1
    * /usr/bin/mclient commit
    * /usr/share/manticore/plugins/sshd/wrappers/apply.sh root/sshd

  * put a sshd_config file like (it come from an ubuntu server config, 
perhaps is it possible to optimize it) :

# What ports, IPs and protocols we listen for
Port 22
# Use these options to restrict which interfaces/protocols sshd will bind to
#ListenAddress ::
#ListenAddress 0.0.0.0
Protocol 2
# HostKeys for protocol version 2
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_dsa_key
HostKey /etc/ssh/ssh_host_ecdsa_key
HostKey /etc/ssh/ssh_host_ed25519_key
#Privilege Separation is turned on for security
UsePrivilegeSeparation yes

# Lifetime and size of ephemeral version 1 server key
KeyRegenerationInterval 3600
ServerKeyBits 1024

# Logging
SyslogFacility AUTH
LogLevel INFO

# Authentication:
LoginGraceTime 120
PermitRootLogin without-password
StrictModes yes

RSAAuthentication yes
PubkeyAuthentication yes
#AuthorizedKeysFile     %h/.ssh/authorized_keys

# Don't read the user's ~/.rhosts and ~/.shosts files
IgnoreRhosts yes
# For this to work you will also need host keys in /etc/ssh_known_hosts
RhostsRSAAuthentication no
# similar for protocol version 2
HostbasedAuthentication no
# Uncomment if you don't trust ~/.ssh/known_hosts for 
RhostsRSAAuthentication
#IgnoreUserKnownHosts yes

# To enable empty passwords, change to yes (NOT RECOMMENDED)
PermitEmptyPasswords no

# Change to yes to enable challenge-response passwords (beware issues with
# some PAM modules and threads)
ChallengeResponseAuthentication no

# Change to no to disable tunnelled clear text passwords
#PasswordAuthentication yes

# Kerberos options
#KerberosAuthentication no
#KerberosGetAFSToken no
#KerberosOrLocalPasswd yes
#KerberosTicketCleanup yes

# GSSAPI options
#GSSAPIAuthentication no
#GSSAPICleanupCredentials yes

X11Forwarding yes
X11DisplayOffset 10
PrintMotd no
PrintLastLog yes
TCPKeepAlive yes
#UseLogin no

#MaxStartups 10:30:60
#Banner /etc/issue.net

# Allow client to pass locale environment variables
AcceptEnv LANG LC_*

Subsystem sftp /usr/lib/openssh/sftp-server

# Set this to 'yes' to enable PAM authentication, account processing,
# and session processing. If this is enabled, PAM authentication will
# be allowed through the ChallengeResponseAuthentication and
# PasswordAuthentication.  Depending on your PAM configuration,
# PAM authentication via ChallengeResponseAuthentication may bypass
# the setting of "PermitRootLogin without-password".
# If you just want the PAM account and session checks to run without
# PAM authentication, then enable this but set PasswordAuthentication
# and ChallengeResponseAuthentication to 'no'.
UsePAM yes
DenyUsers

Hope it's help anyone

Regards

Franck

Le 19/10/2016 08:51, "> BOTZ Franck (Administrateur Systèmes et Réseaux) 
- DDT 67/SIDSIC/Pôle Infra (par Internet, dépôt 
x2go-user-boun...@lists.x2go.org)" a écrit :
Hi !

So, there is my configuration :

Terminal
Hardware : HP t620
HP Thinpro (ubuntu 14.04 base)
x2goclient 4.0.5.3

Broker
Ubuntu server 16.04 64 LTS
python-x2gobroker           0.0.3.1-0~934~ubuntu16.04.1 all          
X2Go Session Broker (Python modules)
x2gobroker                          0.0.3.1-0~934~ubuntu16.04.1 
all          X2Go Session Broker (executable)
x2gobroker-loadchecker   0.0.3.1-0~934~ubuntu16.04.1 all X2Go Session 
Broker (load checker service)
x2gobroker-ssh                   0.0.3.1-0~934~ubuntu16.04.1 
amd64        X2Go Session Broker (SSH broker)

Server :
Ubuntu Desktop 16.04 64 LTS
libx2go-log-perl 4.1.0.0-0~1359~ubuntu16.04.1 all          Perl 
X2Go::Log package
libx2go-server-db-per 4.1.0.0-0~1359~ubuntu16.04.1 amd64 Perl 
X2Go::Server:DB package
libx2go-server-perl 4.1.0.0-0~1359~ubuntu16.04.1 all          Perl 
X2Go::Server package
x2goagent 2:3.5.0.33-0~687~ubuntu16.04.1 all          X2Go agent
x2gobroker-agent 0.0.3.1-0~934~ubuntu16.04.1 amd64        X2Go Session 
Broker (remote agent)
x2goclient 4.0.5.1-0~1103~ubuntu12.04.1 amd64        X2Go Client 
application (Qt4)
x2goserver 4.1.0.0-0~1359~ubuntu16.04.1 amd64        X2Go server 
daemon scripts
x2goserver-common 4.1.0.0-0~1359~ubuntu16.04.1 amd64        X2Go 
Server (common files)
x2goserver-extensions 4.1.0.0-0~1359~ubuntu16.04.1 all X2Go Server 
(extension support)
x2goserver-fmbindings 4.1.0.0-0~1359~ubuntu16.04.1 all X2Go Server 
(file manager bindings)
x2goserver-printing 4.1.0.0-0~1359~ubuntu16.04.1 all          X2Go 
server (printing support)
x2goserver-xsession                 4.1.0.0-0~1359~ubuntu16.04.1

I can connect from my t620 to the server trough the broker. I can 
resum/suspend a session. The system is functionnal.

My next step is sharing a folder on the t620 (the folder used to mount 
a mass storage /tmp/tmpfs/media and access to it from the session open 
on the server.

On the broker, my x2gobroker-sessionprofiles.conf :
[DEFAULT]
defsndport=true
useiconv=false
iconvfrom=UTF-8
#height=600
export=
quality=9
#fullscreen=true
#layout=
#model=
useexports=true
#width=800
speed=2
soundsystem=pulse
print=false
sndport=4713
xinerama=true
variant=
usekbd=true
fstunnel=true
applications=
multidisp=false
sshproxyport=22
sound=true
rootless=true
iconvto=UTF-8
soundtunnel=true
dpi=96
sshport=22
setdpi=0
pack=16m-jpeg
directrdp=false
user=

[xfce]
host=x2go-server-01 (10.0.0.1)
name=XFCE
command=XFCE
type=auto
fullscreen=true
xinerama=false
export="/tmp/tmpfs/media:1"
broker-session-autologin=false
usebrokerpass=true

As you can see, in the xfce section, I export the "/tmp/tmpfs/media:1" 
directory.

On the t620 my mass storage is mounted on 
/tmp/tmpfs/media/SomeUsbStick and I access it with the user who launch 
the x2goclient.

When the session openned I see on the server :
  * the time to open session is longer with the export directive
  * the media directory appears is home directory
  * the media contained disk/_tmp_tmpfs_media directory
  * When I list _tmp_tmpfs_media i have "permission denied"
  * the mount command let me see (but brievely) a line like 
user@127.0.0.1 ...
  * the trash disappear

So what can I do to access to my USB mass storage stick ?

Sincerly

Franck
_______________________________________________
x2go-user mailing list
x2go-user@lists.x2go.org
http://lists.x2go.org/listinfo/x2go-user


_______________________________________________
x2go-user mailing list
x2go-user@lists.x2go.org
http://lists.x2go.org/listinfo/x2go-user