|01:36||ogra is now away: currently disconnected|
|02:00||sugarbeet is back|
|02:06||wyre is now away: Auto away at Fri Feb 10 02:06:46 2023 UTC|
Typing usernames should be possible in any DM, not just in lightdm
|02:17||alkisg is now known as alkisg_irc|
|02:18||alkisg1 is now known as alkisg|
|02:34||sugarbeet is now away: [tmux detached]|
|05:49||quinox has left IRC (email@example.com, Quit: WeeChat 3.6)|
|05:52||quinox has joined IRC (firstname.lastname@example.org)|
|06:35||wyre is back|
|06:52||ricotz has joined IRC (ricotz!~ricotz@ubuntu/member/ricotz)|
|06:58||woernie has left IRC (email@example.com, Quit: http://quassel-irc.org - Chat comfortably. Anywhere.)|
|06:59||wyre is now away: Auto away at Fri Feb 10 06:59:06 2023 UTC|
|07:00||woernie has joined IRC (firstname.lastname@example.org)|
|07:12||woernie has left IRC (email@example.com, Remote host closed the connection)|
|07:15||woernie has joined IRC (firstname.lastname@example.org)|
|07:20||wyre is back|
|07:23||woernie has left IRC (email@example.com, Remote host closed the connection)|
|07:23||woernie has joined IRC (firstname.lastname@example.org)|
|07:24||wyre is now away: Auto away at Fri Feb 10 07:24:33 2023 UTC|
|07:25||woernie has left IRC (email@example.com, Remote host closed the connection)|
|07:26||wyre is back|
|08:31||ogra is back|
|09:06||Lantizia has joined IRC (Lantizia!~Lantizia@22.214.171.124)|
Hey... I know LTSP has been tested more with MATE... but in terms of a Ubuntu LTS to go for... is it more working/tested with 22.04 or 20.04 ?
As I'm hopefully going to attempt to install it on Trisquel GNU/Linux (either v10... based on 20.04... or v11... based on 22.04)
and use it at an FSFE (see fsfe.org) meeting
actually nevermind v11 isn't even out
We're using it in many schools here so all >=18.04 LTS Ubuntu versions have been tested
|10:03||pr0f3 has joined IRC (firstname.lastname@example.org)|
hello, i'm trying to view a pc with epoptes and i cant
i dont know where i can see error o something
to fix it
is in linux mint, i have the firewall disable
pr0f3: if you want, vnc to me from both the server AND the client, using this command: x11vnc -connect alkisg.ltsp.org
|10:08||wyre is now away: Auto away at Fri Feb 10 10:08:19 2023 UTC|
|10:10||wyre is back|
10/02/2023 11:07:44 Making connection to client on host alkisg.ltsp.org port 5500
10/02/2023 11:09:54 rfbConnectToTcoAddr: failed to connect
: Connection timed out
pr0f3: are you using wayland?
Are you connected via GUI or via SSH?
GNOME/Wayland? Or Xorg?
i dont know
What's the output of this: xrandr | nc termbin.com 9999
alkisg im using xor
pr0f3: try to disable your firewall completely (sudo ufw disable), then try once more to connect to me
It sounds like your problem is the firewall
You can't even connect to termbin.com now
Firewall stopped and disabled on system startup
im in a public network and they have one security level that doesnt allow to me to visit termbin.com
is in a Andalucian School
Is there any log of the application to see errors?
|10:27||pr0f3 has left IRC (email@example.com, Quit: Client closed)|
Sure, run epoptes-client and see the screen
It shows the errors in plain old stderr
|10:32||wyre is now away: Auto away at Fri Feb 10 10:32:29 2023 UTC|
|10:34||wyre is back|
|11:26||ogra is now away: currently disconnected|
|11:56||ogra is back|
hello,... (full message at <https://libera.ems.host/_matrix/media/v3/download/libera.chat/9af9d6b47a8e0ff44f5cd42e852dfe5c08040c60>)
err404: you can open a terminal on the clien tand try `ssh user@server`, to see if ssh logins work
I cannot, because the console 1..6 ask for login and password
even the login"user" password "live" is not working in the debian-live.img
* the debian-live.img (it is the default login/password for debian live)
err404[m]: are your user allowed to ssh with password from the ltsp client to the ltsp server with password (as the default is having $HOME access from the client through sshfs)
I have been trying to shortcuts ltsp with debian and chroot, and failed as not knowing enough about LTSP, so baby steps now from an LTSP ubuntu live desktop as server and gradually improving/learnign my stepes
|13:30||wyre is now away: Auto away at Fri Feb 10 13:29:56 2023 UTC|
https://termbin.com/rj20w <- failing to add ppa for raspios
|14:09||ogra is now away: currently disconnected|
|14:11||woernie has joined IRC (woernie!~werner@2001:9e8:e267:3300:7290:6d68:6ab1:4b22)|
so doing it the debian's way :P
|14:18||woernie has left IRC (woernie!~werner@2001:9e8:e267:3300:7290:6d68:6ab1:4b22, Remote host closed the connection)|
when using chroot method without configuring anything in the choot /et/ltsp/ltsp.conf the login and home access are using sshfs from the ltsp server. also if using debian live (is it really that live cd now that we are talking about) the live cd users don't exist with ltsp
it's the ltsp server for default Installation
vsuojanen[m]: jumping into the discussion, how do one change the sshfs for home access? is just using NFS for /home enough ?
and so, what is the authentification method used (if not sshfs for home) ?
and for raspios integration, although epoptes-client is installed it did not configured /etc/hosts for server access (maybe because I was using NFS_RW + ADMINISTRATIVE_CLIENT=1) ?
for raspios, I just needed to add the "server" entry in /etc/hosts and "/usr/sbin/epoptes-client -c"
sshfs is the default for home access, then you don't configure anyhting in ltsp.conf. that's how it works by default when you follow Installation instructions
I have never used raspios. If I remember discussions it doesn't use sshfs and if needed then needs to be installed. Isn't that referenced already somewhere in ltsp raspios related instructions page?
if I don't want sshfs for the client user, I just need to use PASSWORDS_x= in ltsp.conf?
nope. So Are you using raspios?
/home/user should then be local and created on initial login (and ephemeral if no NFS server is providing access to /home).
I am playing with both: raspios and chrootless on lts2004-desktop based server
tru_tru: I doubt this
vsuojanen: live CDs usually don't have sshfs; it can be provided dynamically if you put it under /etc/ltsp and run ltsp initrd, I describe that somewhere in the man pages
I don't know, it's advanced use anyway
tru_tru: re raspios and add-apt-repository, raspios is debian yeah, so it needs the debian method of adding the ppa
can I mix, sshfs users and local user with on-the-fly creation for /home ?
And/or nfs users too
https://ltsp.org/man/ltsp.conf/#PASSWORDS_x <-- ltsp hash is md5, but actualy is $6$ means SHA-512 in many recents distro linux.
may be is the issue I encounter (every users and password did not let me login in ltsp client)
* https://ltsp.org/man/ltsp.conf/#PASSWORDS\_x \<-- ltsp hash is md5, but actualy is $6$ means SHA-512 in many recents distro linux.
may be is the issue I encounter (every users and password did not let me login in ltsp client)?
err404: in that page, see the last line; it will allow you to login as root
After you login as root, check if you can ssh to the ltsp server
LTSP doesn't create hashes, it has its own pam module to test the password
So the md5 hash you see isn't created by ltsp
PASSWORDS_x="teacher/cXdlcjEyMzQK" goes into the [clients] section ? do I need anything else (beside ltsp initrd, and reboot the client) ?
ok, I mean about inserting /etc/shadow from the server by the command `ltsp initrd`
I will try to edit the ltsp.conf
err404: if your /etc/shadow entries on the server are md5sum'ed, the server is misconfigured
If you use PWMERGE to forward shadow entries, then ltsp copies them as is
By default, ltsp doesn't process shadow
my /etc/shadow entries are sha-512
It doesn't include it in the image or in ltsp initrd
OK, and where do you see the md5sum entries?
I only read it in the doc, as example, sorry
Ah maybe you mean some old example that I copied from some older ubuntu system, with existing shadow entries, that were not related by ltsp
*created by ltsp
err404: if you're talking about the URL you pasted, that's NOT md5sum. It's base64
That's a completely different thing. It's a method to tell LTSP your actual password, NOT the hash, so that it can use it for autologin via ssh
hat's NOT md5sum. It's base64 <-- ooops, sorry again 😛
In that case, ltsp needs the password, not the hash; and base64 just encrypts it just a bit, to avoid over the shoulder watchers
but, I seen that users are imported to ltsp client (even on yhe debian live), I hoped same about passords
To be safe, ltsp doesn't includes passwords or hashes in the image by default
You can add them with the PWMERGE ltsp.conf directive
ok, so, the PWMERGE ltsp.conf directive is mandatory, that is clear now for me, thanks
err404: it's ONLY mandatory if you want to include local users
(and if you don't want base64 passwords)
And you can use the simple ltsp.conf [clients] hash method also. Just don't do it for root but for some other local username (If when creating The locale homes during client boot
x86_64 chrootless + PASSWORDS_x is not working for me [clients] or [:mac:] -> the teacher account does not show in /etc/passwd|shadow (ssh login for root with ssh keys works fine to login into the booted client)
vsuojanen[m]: I mean POST_INIT_SET_ROOT_HASH method works for normal usernames also
tru_tru: the teacher account exists on the server but not on the client?
no teacher does not exist on ltsp server
no, the teacher account does not exist on ltsp server
LTSP doesn't create user accounts
If you want to create them dynamically, you need to call adduser in POST_INIT something
tru_tru: is this supposed to be a local user, with a local home partition?
Where will /home/teacher come from? local, sshfs, nfs, tmpfs?
yes, local ephemeral user on the client only
OK then calling useradd in POST_INIT should also create a temp home
ie no NFS, no sshfs, just on the client without touching the local storage
(assuming you have enough RAM for all that)
right (for RAM restriction)
what is tmpfs VS local ?
I think there should be a kiosk-related discussion somewhere on github/ltsp, that demonstrates useradd. Or in the wiki.
Local means home=/dev/sda1, while tmpfs means ram
one could 'mkfs.xfs /dev/sda && mount /dev/sda /home' in init ?
yes, we need specific pas for users (add users, importing users, password ...)
* yes, we need specific wiki page for users (add users, importing users, password ...)
PASSWORDS_x is just for changing password, but not creating accounts... I was a little confused by that.
does mksf programs exist in The initramfs?
Sure, one could do that
I assumed (wrongly) that it would spit an error and/or create the account on the fly! Now that is cleared, I can proceed with my testing.
init isn't the initramfs
It's like init=/bin/bash
POST_INITRD_BOTTOM => initramfs, POST_INIT => real root
|16:38||* tru_tru waves, week-end duties calling|
|17:03||wyre is back|
|17:47||shored is back|
|18:00||vagrantc has joined IRC (vagrantc!~vagrant@2600:3c01:e000:21:7:77:0:20)|
|20:55||Lantizia has left IRC (Lantizia!~Lantizia@user/lantizia, Ping timeout: 264 seconds)|
|21:18||wyre is now away: Auto away at Fri Feb 10 21:18:24 2023 UTC|
|23:50||vagrantc has left IRC (vagrantc!~vagrant@2600:3c01:e000:21:7:77:0:20, Quit: leaving)|
|23:58||ricotz has left IRC (ricotz!~ricotz@ubuntu/member/ricotz, Quit: Leaving)|