Source: ldm
Version: 2:2.18.06-1
Severity: wishlist
User: debian-...@lists.debian.org
Usertags: debian-edu
Hi vagrant,
on diskless workstations removable media can no longer be mounted due to missing
authorization.
As far as I was able to find out, it seems to be due to security related changes
to udisks. The UDisks2 policy requires a logged in user available via 'w' or
'who'. While workarounds¹ are possible, imo the proper fix would be if LDM
could register the login session with wtemp and utemp.
(The Debian Edu setup allows users to also login on a text console in parallel.
If done so, this login is registered with wtemp and utemp and then removable
media can be used in the gui session.)
Please check.
Thanks for maintaining LTSP for such a long time,
Wolfgang
¹Maybe patch /usr/share/polkit-1/actions/org.freedesktop.UDisks2.policy on the
fly for each session via a script in init-ltsp.d, using:
--- a/org.freedesktop.UDisks2.policy 2018-09-28 21:48:23.000000000 +0200
+++ b/org.freedesktop.UDisks2.policy 2018-11-14 22:10:15.277057756 +0100
@@ -84,7 +84,7 @@
<message xml:lang="zh_CN">挂载文件系统需要身份验证</message>
<message xml:lang="zh_TW">要掛載檔案系統需要先核對身分</message>
<defaults>
- <allow_any>auth_admin</allow_any>
+ <allow_any>yes</allow_any>
<allow_inactive>auth_admin</allow_inactive>
<allow_active>yes</allow_active>
</defaults>
@@ -165,7 +165,7 @@
<message xml:lang="zh_CN">挂载文件系统需要身份验证</message>
<message xml:lang="zh_TW">要掛載檔案系統需要先核對身分</message>
<defaults>
- <allow_any>auth_admin</allow_any>
+ <allow_any>yes</allow_any>
<allow_inactive>auth_admin</allow_inactive>
<allow_active>auth_admin_keep</allow_active>
</defaults>
