Bug#335944: gnome-session leaves esd running in $HOME, causing
pam_mount's close_session unmount to fail
Daniel Kahn Gillmor
dkg-debian.org at fifthhorseman.net
Wed Oct 26 21:57:58 UTC 2005
Package: gnome-session
Severity: normal
Tags: patch
in a system using pam_mount, it can be important for security that the
user's home directory be unmounted (via pam_close_session()) when they
log out.
However, debian's gnome-session spawns esd at login with a current
working directory (cwd) inherited from gnome-session (which appears to
default to $HOME when using gdm). Since esd lives on in $HOME a
little while after the user exits the session, pam_mount can't unmount
the home directory.
The attached revision of debian/patches/07_kill_esd.diff tells esd to
start up with a cwd of "/" instead of inheriting cwd from
gnome-session. The patch also tells the (hackish-looking)
stop_esd_delayed() function to spawn its "sleep 5 ; kill %i" shell
command with a cwd of "/". This is enough to let pam_mount politely
unmount any mounted homedir.
i'd be happy to hear any thoughts about other ways to do this. When a
session is completed, i think it is important that the default install
leaves *nothing* open in or below a user's home directory. (of
course, if the user nohups something in the background and leaves it
running as they log out, that's their own problem).
Thanks for maintaining GNOME for debian! it's a sharp-looking suite.
-- System Information:
Debian Release: testing/unstable
APT prefers testing
APT policy: (700, 'testing'), (700, 'stable'), (600, 'unstable')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.12-1-686
Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 07_kill_esd.diff
Type: text/x-c
Size: 1443 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/pkg-gnome-maintainers/attachments/20051026/21d0de86/07_kill_esd.bin
More information about the Pkg-gnome-maintainers
mailing list