Oh damn! Yes. It worked!
So, my next question would be "how to avoid it?"
To expand a bit more:
I want to make these passwords inaccessible outside the systemd service
even by that USER. (or does it sound something contradictory?)
Regards,
Dinesh
On Fri, 2018-12-07 at 11:36 +, Sietse van Z
Sorry, I take my previous message back.
[pkiuser@localhost] $ keyctl show @us
Keyring
489278924 --alswrv 17 65534 keyring: _uid_ses.17
597101514 --alswrv 17 65534 \_ keyring: _uid.17
832804872 --alswrv 1717 \_ user: nuxwdog:user
Regards,
Dinesh
On Fri, 2018-12-07 at
[pkiuser@localhost] $ keyctl show @us
Keyring
863455739 --alswrv 17 65534 keyring: _uid_ses.17
[pkiuser@localhost] $ keyctl show @u
Keyring
461086211 --alswrv 17 65534 keyring: _uid.17
722174553 --alswrv 1717 \_ user: nuxwdog:user
[pkiuser@localhost] $ keyctl link @u @s
On Fri, 2018-12-07 at 10:00 +, Sietse van Zanen wrote:
> Hi Dinesh,
>
> In that case I suggest you start by reading:
> http://man7.org/linux/man-pages/man7/keyrings.7.html
Thanks for this. It does provide quite a few info what I need! :)
>
> What does cat /proc/keys say?
There is no "nuxw
On Fri, Dec 7, 2018 at 12:34 PM Lennart Poettering
wrote:
>
> On Do, 06.12.18 22:58, Belisko Marek ([email protected]) wrote:
>
> > [Unit]
> > Description=Demo
> > After=systemd-user-sessions.service
> >
> > [Service]
> > ExecStart=-/usr/bin/appcontroller /opt/test --applications-root
> > /
On Do, 06.12.18 14:37, Dinesh Prasanth Moluguwan Krishnamoorthy
([email protected]) wrote:
> Hi Lennart,
>
> [pkiuser@localhost] $ keyctl list @u
> 1 key in keyring:
> 114920030: --alswrv1717 user: nuxwdog:user
>
> That's the attrs of the created key.I'm not sure how to read these
> at
It's probably exactly that, you are running the keyctl in a subprocess and
that's why the key is not available in your logon session. Let's reproduce the
issue shall we.
First create a key for the user in a separate login session:
[uglymotha@rdsan01 ~]$ sudo -H -u uglymotha keyctl add user bla b
On Do, 06.12.18 22:58, Belisko Marek ([email protected]) wrote:
> [Unit]
> Description=Demo
> After=systemd-user-sessions.service
>
> [Service]
> ExecStart=-/usr/bin/appcontroller /opt/test --applications-root /data/user/qt
>
> [Install]
> WantedBy=multi-user.target
>
> I think it is some ki
Dinesh,
That's linking the key to the session keyring. Also because you're adding keys
in a subprocess you do need to take care with setting correct permissions on
the key.
What does keyctl show @us say?
-Sietse
-Original Message-
From: Dinesh Prasanth Moluguwan Krishnamoorthy
Se
Hi Dinesh,
In that case I suggest you start by reading:
http://man7.org/linux/man-pages/man7/keyrings.7.html
What does cat /proc/keys say?
-Sietse
-Original Message-
From: systemd-devel On Behalf Of
Dinesh Prasanth Moluguwan Krishnamoorthy
Sent: Thursday, 6 December, 2018 23:38
To: L
On Fri, Dec 7, 2018 at 9:36 AM Belisko Marek
wrote:
> Hi Tomasz,
>
> On Fri, Dec 7, 2018 at 6:26 AM Tomasz Torcz wrote:
> >
> > On Thu, Dec 06, 2018 at 10:58:31PM +0100, Belisko Marek wrote:
> > > Hi,
> > >
> > > I'm trying to run qt qml application on intel nuc but when booted from
> > > hdd I'
11 matches
Mail list logo
