Recipe 5.2 Running X Programs as root

Previous page
Table of content
Next page

5.2.1 Problem

While logged in as a normal user, you need to run an X window application as root. You get this error message:

 ** WARNING ** cannot open display

5.2.2 Solution

Create a shell script called, say, xsu:

#!/bin/sh su - -c "exec env DISPLAY='$DISPLAY' \         XAUTHORITY='${XAUTHORITY-$HOME/.Xauthority}' \         "'"$SHELL"'" -c '$*'"

and run it with the desired command as its argument list:

# xsu  ...command line...

5.2.3 Discussion

The problem is that root's .Xauthority file does not have the proper authorization credentials to access your X display.

This script invokes a login shell [Recipe 5.1] and the env program sets the environment variables DISPLAY and XAUTHORITY. The values are set to be the same as the invoking user's. Otherwise they would be set to root's values, but root doesn't own the display.

So in this solution, XAUTHORITY remains ~user/.Xauthority instead of changing to ~root/.Xauthority. Since root can read any user's .Xauthority file, including this one, it works.

This trick will not work if the user's home directory is NFS-mounted without remote root access.

5.2.4 See Also

env(1), su(1), xauth(1).

Previous page
Table of content
Next page
Linux Security Cookbook
Linux Security Cookbook
ISBN: 0596003919
EAN: 2147483647
Year: 2006
Pages: 247
Authors: Daniel J. Barrett, Richard E. Silverman, Robert G. Byrnes
BUY ON AMAZON
ADO.NET 3.5 Cookbook (Cookbooks (OReilly))
Agile Project Management: Creating Innovative Products (2nd Edition)
MySQL Clustering
Wireless Hacks: Tips & Tools for Building, Extending, and Securing Your Network
InDesign Type: Professional Typography with Adobe InDesign CS2
Digital Character Animation 3 (No. 3)
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy