Hello, Am Freitag 25 Januar 2013 11:46:03 schrieb Kevin Cave: > Bingo! Starting xrdp as root did the trick. There was one "connect error" > initially, but connected on the second attempt, and after that I can > reconnect to the same session perfectly.
Then you're lucky, because when X11rdp needs some time to start (because for example the server is loaded), the initial connection will fail. xrdp only tries 4*250ms to open the UNIX socket of xrdp. See <https://forge.univention.org/bugzilla/attachment.cgi?id=5015> for a quick patch if you encounter that. > Which is odd because the user xrdp is configured as a system user - trying > to do things the Debian Way - userID is 123 and groupID is also 123 - it > Should Work[tm] > > I'll have to investigate why a uid/gid of 123 doesn't have permission to > use unix domain sockets... I'll be back with further info later, hopefully. Because X11rdp is foked from xrdp-sesman, which runs your session as your regular user. Thus the socket /tmp/.xrdp/... is created as $USER:$GROUP with permissions 0700. With Debian xrdp runds as xrdp:xrdp, which is not enough to connect to that socket. Running xrdp by-passes that permission check, but then you're running the daemon as root with all the bad security implications. A better solution would be to - either create a common group for xrdp and the users running X11rdp. This would drop the requirement to run xrdp as root, but still gives your users access to other users socket files. - or switch xrdp to communicate with sessman over a UNIX socket and do socket passing from X11rdp to xrdp-sessvc to xrdp-sessman to xrdp. Sincerely Philipp PS: I'm currently woking on a package for our own Debian based distribution UCS and have done some general work on XRDP, which is available from <https://github.com/pmhahn/xrdp/commits/master> -- Philipp Hahn Open Source Software Engineer h...@univention.de Univention GmbH be open. fon: +49 421 22 232- 0 Mary-Somerville-Str.1 D-28359 Bremen fax: +49 421 22 232-99 http://www.univention.de/
signature.asc
Description: This is a digitally signed message part.
------------------------------------------------------------------------------ Master Visual Studio, SharePoint, SQL, ASP.NET, C# 2012, HTML5, CSS, MVC, Windows 8 Apps, JavaScript and much more. Keep your skills current with LearnDevNow - 3,200 step-by-step video tutorials by Microsoft MVPs and experts. ON SALE this month only -- learn more at: http://p.sf.net/sfu/learnnow-d2d
_______________________________________________ xrdp-devel mailing list xrdp-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/xrdp-devel
