[304] in athena10
chmod 777 AFS homedirs; nuking local account
daemon@ATHENA.MIT.EDU (Jonathan Reed)
Mon Jul 7 15:46:48 2008
Message-Id: <7CA61286-A963-4BF9-A21C-6EFCF9F933E0@mit.edu>
From: Jonathan Reed <jdreed@MIT.EDU>
To: athena10@mit.edu
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v919.2)
Date: Mon, 7 Jul 2008 15:46:02 -0400
I came across two issues today while testing Athena 10 on an Ubuntu
8.04 machine on which I had installed debathena-workstation):
- Upon login, I was getting an error: "User's .dmrc file is being
ignored. This prevents the default session and language from being
saved. File should be owned by user and have 644 permssions. User's
$HOME directory must be owned by user and not writable by other
users". This turned out to be due to the fact that something (GNOME?)
did not like my AFS homedir having world-writable UFS permissions.
(It doesn't seem to care about group-writable). A quick poke through
AFS indicates that I'm not the only person who has such UFS
permissions on my account. What can we do about this? Warn the
user? Fix everyone's homedir for them?
- Prior to athenization, my workstation had one local account, jdreed,
which was also an "admin" account (for the purposes of running sudo,
etc). After athenization, I wanted my AFS homedir and dotfiles to be
run by default. Zephyr discussion suggests that Debathena has a
package for this - debathena-shell-config, but that doesn't seem to be
present in the Athena 10 repository. To accomplish what I wanted,
I essentially ran "userdel jdreed", rebooted, and cleaned out /tmp in
single-user mode (otherwise things like /tmp/orbit-jdreed stick around
but are owned by the wrong UID, and bad things happen). Do we have a
preferred way of accomplishing this that I can document? And what if
the user wants to retain sudo privileges? Should we recommend ksu
instead?
-Jon
