Multiuser Support

[emjaybee]

I modified my /etc/passwd file to add an additional user on my PDA.  I could log into the system as the user, but some of the system apps could only be run as root.  Would a simple suid root for those apps fix everything, and is anyone else running pdaxrom in a multi-user environment?  The reason I ask is because I used gaim to get on IRC and a bot said it's not good to run IRC as root (which I don't do on my laptop) so this got me thinking.  Am I just wasting my time here?

[CyberWolf]

Hello,

I'm currently running PdaX in normal user mode. You still have to "su" to root to perform certain operations (like setting time, fiddling with cardctl, etc.), but you could always fix these problems by using sudo.

For the rest, you have to add a group for having some rw device access (like stuff in /dev/misc/ and /dev/sound/ ) and setuid some programs (after you give them permission g+rx and o-rxw), like "chkhinge". Also take a look at /etc/busybox.conf and change it to enable soma commands you would like to run as a user (like ping, if I remember correctly).

That's what I remember I did... sorry, but I was to lazy to write down all the customization... when PdaX 1.1.0 will be ready, I suppose I'll do it if it will be still needed (i.e. not already implemented into the base system).

Hope this can help a little!

Ciao,

Andrea

[emjaybee]

Here is the line I added in /etc/passwd

Code: [Select]

user::1000:1000:Zaurus User:/home/user:/bin/bash
and /etc/group

Code: [Select]

user::1000:
As my user when I try to create a password, after typing and retyping what I want I get the error "passwd: Cannot change ID to root."  I get this error even when I suid root /usr/bin/passwd (actually I just suid root /bin/busybox since that's what passwd points to).

I would like some security on my system since I've had a PDA stolen before with some pretty sensitive information on it.  What am I missing here?

PS: when I try to change my user's password as root, passwd says everything's ok, so I log out and log back in as my user and I didn't have to type my password in.

[CyberWolf]

Try to use the commands to add groups and users instead of editing /etc/group and /etc/passwd directly, maybe this can help and be less error prone.

I suspect your problem arises because you have to add an entry to /etc/shadow too. Again, I suggest you delete your user and group from the respective files and proceed with "addgroup" and "adduser".

And about busybox, to setuid it's related commands you have to enter something like:

Code: [Select]

su = sxx root.root
into /etc/busybox.conf.

Hope this helps!

Bye,

Andrea

[Stubear]

If you are going to update /etc/passwd and /etc/gropus manually then don't forget to add and entry into /etc/shadow too or your password changes will never stick.

Stu