Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-25536

Kiosk script unable to execute with the noexec bit set on the home directory

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • rhel-9.3.0
    • gnome-kiosk
    • None
    • None
    • None
    • 3
    • rhel-sst-display-desktop-foundation
    • ssg_display
    • None
    • False
    • Hide

      None

      Show
      None
    • None
    • DESKTOP Cycle #1 10.0 phase, DESKTOP Cycle #2 10.0 phase, DESKTOP Cycle #3 10.0 phase
    • None
    • None
    • None

      What were you trying to do that didn't work?

      When the /home mountpoint is mounted with the noexec option, the GNOME kiosk script fails to execute.

      Please provide the package NVR for which bug is seen:

      40.0-5

      How reproducible: 100%

      Steps to reproduce

      1. Mount the home directory with the noexec option.
      2. Attempt to run a GNOME Kiosk script session.

      Expected results

      Kiosk script executes successfully

      Actual results

      Kiosk script fails to execute with an "access denied" error.

      Additional notes

      In US DISA STIG policy for RHEL 8 and 9, the /home directory is required to have the noexec option set. This did not prevent the GNOME Kiosk script from executing in RHEL 8; however, the new kiosk script scheme for RHEL 9 causes this to fail.

              rhn-engineering-rstrode Ray Strode
              rhn-support-amike Andrew Mike
              Ray Strode Ray Strode
              Barry Dunn Barry Dunn
              Votes:
              0 Vote for this issue
              Watchers:
              9 Start watching this issue

                Created:
                Updated: