Re: gvfs status report

From: Havoc Pennington <hp redhat com>
To: David Zeuthen <david fubar dk>
Cc: "gnome-vfs-list gnome org" <gnome-vfs-list gnome org>, "gtk-devel-list gnome org" <gtk-devel-list gnome org>, Alexander Larsson <alexl redhat com>
Subject: Re: gvfs status report
Date: Wed, 21 Feb 2007 22:12:07 -0500

Hi,

David Zeuthen wrote:


Actually, as mentioned on IRC, TCP/IP transport been in D-Bus for a long
time, it's just not hooked up by default on the session bus nor
forwarded by e.g. ssh yet. You asked about how auth will work; that's a
good question... Havoc, can you shed some light on the D-Bus session bus
forwarding over ssh situation? Thanks!

The "cookie in your homedir" auth method should work fine for tcp/ip ifyou have a shared nfs homedir, you would just have to add a tcp listenaddress in session.conf so the session bus listens on tcp.

If you don't have a shared nfs homedir, someone would have to add somekind of other working auth method like kerberos or a cookie on the Xdisplay.

ssh forwarding would work for DBUS_SESSION_BUS_ADDRESS exactly as itdoes for DISPLAY, and would also encrypt/compress the protocol stream.The problem of course is that someone has to patch ssh.

I don't see any good solution other than patching ssh, though.Unfortunately people are just hacking around things by using dbus-launchto give apps their own private bus on the remote system, which in mostcases is all kinds of broken - it's just that few apps rely on dbus allthat heavily yet, so it's possible to get by without patching ssh.


Havoc

Follow-Ups:
- Re: gvfs status report
  - From: David Zeuthen

References:
- gvfs status report
  - From: Alexander Larsson
- Re: gvfs status report
  - From: David Zeuthen
- Re: gvfs status report
  - From: Alexander Larsson
- Re: gvfs status report
  - From: David Zeuthen

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]