YaST2 error: (gnomesu): CRITICAL **: There are no services for 'libgnomesu' available.
This document (7000691) is provided subject to the disclaimer at the end of this document.
Environment
SUSE Linux Enterprise Server 10
SUSE Linux Enterprise Real Time
SUSE Linux Enterprise Real Time
Situation
When running YaST2 either from the GNOME or KDE panel or in a shell using the command 'yast2' the following error is experienced
** (gnomesu:7186): CRITICAL **: There are no services for 'libgnomesu' available.
Resolution
Solution
Create /etc/permissions.local and state the permissions for the files that need to be adjusted.
Alternative solution
Lower the file permissions to mode 'secure' with YaST2.
Create /etc/permissions.local and state the permissions for the files that need to be adjusted.
- Create /etc/permissions.local with an editor
- State access permissions within the file in the following way:
FILE (including full path) USER:GROUP PERMISSIONS, e.g./usr/lib/libgnomesu/gnomesu-pam-backend root:root 4755
- Save the file
- Run the command
SuSEconfig --module permissions
to activate the changes.
Alternative solution
Lower the file permissions to mode 'secure' with YaST2.
Additional Information
Root cause
This issue is caused by wrong access permissions of the file /opt/gnome/lib/libgnomesu/gnomesu-pam-backend. These are usually set to '-rwsr-xr-x' (note the 's' for SUID) or 4755 but in case the file permission have been altered and set to mode 'paranoid' using the YaST2 security module, the new settings will be '-rwxr-xr-x' or 0755.
Additional Notes
Permissions stated in /etc/permissions.local are used for all security levels. If a certain permission should only be set when the system is in a special permissions mode, files in /etc/permissions.d/ are more suitable. Create them with a name like foo.paranoid and the settings will only be used when the system is set to have 'paranoid' file permissions. Same is valid for easy, local or secure mode.
This issue is caused by wrong access permissions of the file /opt/gnome/lib/libgnomesu/gnomesu-pam-backend. These are usually set to '-rwsr-xr-x' (note the 's' for SUID) or 4755 but in case the file permission have been altered and set to mode 'paranoid' using the YaST2 security module, the new settings will be '-rwxr-xr-x' or 0755.
Additional Notes
Permissions stated in /etc/permissions.local are used for all security levels. If a certain permission should only be set when the system is in a special permissions mode, files in /etc/permissions.d/ are more suitable. Create them with a name like foo.paranoid and the settings will only be used when the system is set to have 'paranoid' file permissions. Same is valid for easy, local or secure mode.
Disclaimer
This Support Knowledgebase provides a valuable tool for SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented "AS IS" WITHOUT WARRANTY OF ANY KIND.
- Document ID:7000691
- Creation Date: 17-Jun-2008
- Modified Date:16-Mar-2021
-
- SUSE Linux Enterprise Real Time
- SUSE Linux Enterprise Server
For questions or concerns with the SUSE Knowledgebase please contact: tidfeedback@suse.com
运行SAP解决方案
公共云
Security
