Havin_it Veteran
Joined: 17 Jul 2005 Posts: 1247 Location: Edinburgh, UK
|
Posted: Mon Jul 11, 2022 7:22 pm Post subject: pam_mount re-prompts when starting tigervnc server |
|
|
Hi,
I have my homedir in a LUKS partition mounted on login using pam_mount, config as follows.
/etc/security/pam_mount.conf.xml (comments snipped):
Code: | <?xml version="1.0" encoding="utf-8" ?>
<!DOCTYPE pam_mount SYSTEM "pam_mount.conf.xml.dtd">
<pam_mount>
<debug enable="0" />
<volume user="myuser" fstype="crypt" path="/dev/sda7" mountpoint="~" options="defaults,fsck,noatime,allow_discard" />
<mntoptions allow="nosuid,nodev,loop,encryption,fsck,nonempty,allow_root,allow_other" />
<mntoptions require="nosuid,nodev" />
<logout wait="0" hup="no" term="no" kill="no" />
<mkmountpoint enable="0" remove="false" />
</pam_mount> |
/etc/pam.d/system-login
Code: | auth required pam_shells.so
auth required pam_nologin.so
auth include system-auth
auth optional pam_mount.so
account required pam_access.so
account required pam_nologin.so
account required pam_time.so
account include system-auth
password include system-auth
session optional pam_loginuid.so
session required pam_env.so envfile=/etc/profile.env
session optional pam_lastlog.so silent
session include system-auth
session optional pam_motd.so motd=/etc/motd
session optional pam_mail.so
-session optional pam_elogind.so
session optional pam_mount.so |
Normally this works fine, but since the last update there is a problem with a script I use to set up a tigervnc server when using the laptop from another seat. I'll login on a TTY (the homedir gets mounted then), then run (using sudo) this script:
Code: |
#!/bin/sh
/etc/init.d/display-manager stop
/etc/init.d/tigervnc start
|
This still works, but now, when starting tigervnc it prompts me for the password again.
KDE, sddm and pam_mount were all updated at the same time so I'm not sure which package to "blame". I had to change the config for tigervnc due to changes in the initscript, but other than listing myuser as instructed in /etc/conf.d/tigervnc and /etc/tigervnc/vncserver.users the only config I've added is this:
~/.vnc/config
Code: | session=plasma
securitytypes=none |
Can anyone suggest a remedy (perhaps in PAM config) so I won't get the repeated pam_mount prompt when starting tigervnc from the TTY? |
|