Fedora - VNC through systemd/xinetd


Configuring Fedora 17 for Xvnc through systemd/xinetd

I found a number of links around but nothing exactly covered my setup.  I wanted to be able to run an X11 session from home as securely and efficiently as possible.  After configuring my home server like this:
  1. sudo yum install xinetd tigervnc-server-minimal
  2. sudoedit /etc/gdm/custom.conf
    3. [security]
    RelaxPermissions=0

    [xdmcp]
    Enable=1
    HonorIndirect=1

    [greeter]
    Quiver=1
  3. sudo useradd -d /var/empty/vncuser -m -s /bin/false vncuser
  4. sudoedit /etc/services
    5. vnc-1280 5910/tcp # VNC Listener
  5. sudoedit /etc/xinetd.d/vnc
    6. # BEGIN
    service vnc-1280
    {
    socket_type = stream
    protocol = tcp
    wait = no
    user = vncuser
    server = /usr/bin/Xvnc
    server_args = -inetd -query localhost -desktop 1024x768x24 -once -geometry 1024x768 -NeverShared securitytypes=none
    }
    # END
  6. sudo systemctl start xinetd.service
And you will need to restart GDM.  I couldn't get the systemctl restart prefdm stuff quite right, so I rebooted.  (Yeah, I know lose massive points for that shortcut)

I then can ssh from a remote box and bring up a GDM login:

  1. ssh -4 -a -L 5900:localhost:5910 user@6.6.7.8
  2. vncviewer -PreferredEncoding "Tight" localhost:5900


Configuring Fedora 15 for Xvnc through systemd/xinetd

I found a number of links around but nothing exactly covered my setup.  I wanted to be able to run an X11 session from home as securely and efficiently as possible.  After configuring my home server like this:
  1. sudo yum install xinetd tigervnc-server-minimal
  2. sudoedit /etc/gdm/custom.conf
    3. [security]
    RelaxPermissions=0

    [xdmcp]
    Enable=1
    HonorIndirect=1

    [greeter]
    Quiver=1
  3. sudo useradd -d /var/run/vncuser -m -s /bin/false vncuser
  4. sudoedit /etc/services
    5. vnc-1024 5900/tcp # VNC Listener
  5. sudoedit /etc/xinetd.d/vnc
    6. # BEGIN
    service vnc-1024
    {
    socket_type = stream
    protocol = tcp
    wait = no
    user = vncuser
    server = /usr/bin/Xvnc
    server_args = -inetd -query localhost -desktop 1024x768x24 -once -geometry 1024x768 -NeverShared securitytypes=none
    }
    # END
  6. sudo systemctl start xinetd.service
And you will need to restart GDM.  I couldn't get the systemctl restart prefdm stuff quite right, so I rebooted.  (Yeah, I know lose massive points for that shortcut)

I then can ssh from a remote box and bring up a GDM login:

  1. ssh -4 -a -L 5900:localhost:5900 user@6.6.7.8
  2. vncviewer -PreferredEncoding "Tight" localhost:5900

Comments

Post a Comment

Popular posts from this blog

Xubuntu Home Server on Dell XPS 13 9370

[ General warning, this isn't a newbie or step-by-step instruction on how to do this.  If you follow this blindly or don't know what a command does you might wipe something value on your system] Introduction I picked up this box through the Dell Outlet for working remotely, but not at home.  It functions okay for that task but I'm in need of a new home server to replace my old Alienware 14 R2 ancient box. Introduction Before Xubuntu 20.04 Installation BIOS Changes Make Bitwise Factory Backup Fresh Xubuntu Installation Zero out the harddrive Install Xubuntu Install latest updates System Configuration LUKS + PAM home directory Boot Xubuntu Live Image & Prepare new partition Create new user with admin privileges Configure PAM mount for primary user Install Software APT Repository Non APT Golang Google Chrome Configuration BIND PIN Entry Nginx + GIT docker XPS 13 9370 Clickpad Buttons Postfix via Gmail ZRam RamDisk Rsyslog Before Xubuntu 20.04 Installation BIOS Changes Acce
Read more

Cygwin + syslog-ng

Until I can get a real workstation at work and get off this winblows, Cygwin is my friend.  I am working on some OO programming with PERL and really need to be able to log syslog messages locally. After installing syslog-ng, I couldn't figure out how to run it, till I stumbled on a page that mentioned the syslogd-config command. Initially I had some problems because the /etc/passwd and /etc/group files were not world readable (don't know if that is a side effect of the Legato restore of my laptop or just the default behavior) however a quick " chmod a+r /etc/passwd /etc/group " seemed to help. running syslogd-config yielded this output: > syslogd-ng-config Creating default /etc/syslog-ng.conf file Warning: The syslogd service is already installed.  You can not run both, syslogd and syslog-ng in parallel. Do you want to deinstall the syslogd service in favor of syslog-ng? (yes/no) yes Warning: The following function requires administrator privileg
Read more

Installing Fedora 21 on a (late 2014) Mac Mini

First boot the Mac Mini with the default Yosemite OS. Download the latest sudo /Applications/Install\ OS\ X\ Yosemite.app/Contents/Resources/createinstallmedia --volume /Volumes/Untitled --applicationpath /Applications/Install\ OS\ X\ Yosemite.app --nointeraction Post Install configuration systemctl enable sshd.service systemctl start sshd.service Because I restored from a dump, the user directory, I found it required a Selinux relabel: groupadd vpnuser useradd vpnuser su - vpnuser restorecon -FRvv ~/ exit Additional Packages that I like: yum install rxvt-unicode-256color yum install screen yum install tigervnc yum install vim To run DNS locally for my home LAN and to cache DNS from the Internet: yum install bind-chroot # with this version of fedora, I'm finally going to move off of my ancient sendmail configuration for relaying email;  I am also going to move from relaying through verizon to relaying through gmail. # ssmtp is the new package # this ur
Read more