KDE-Forum.org

Hello fellas
I just upgraded a machine from KDE 3.1 to KDE 3.1.1 and have installed the languagepack for Swedish. Now I'm having some permission-problems. Not that it prevents the user from doing anything, quite the opposit. I want to stop access to kwrite (for example).

[code:1]bash-2.05b$ ls -la /usr/kde/3.1/bin/kwrite
-rwx------ 1 root root 3844 2003-07-29 11:58 /usr/kde/3.1/bin/kwrite[/code:1]


Now, if I, in a shell, type kwrite, it doesn't start. If I press the shortcut, it starts!
The permissions for the shortcut is:
Command: kwrite %U
Run on klick: Nothing
Windowtitle: Nothing
Run in terminal: Nothing
Run as another user: Nothing

You migt suggest removing the shortcut, wich I will do, but it also starts if you use Run command: kwrite

I'm running Gentoo with Gentoo-sources 2.4.20-gentoo-r5 on x86.

Uhm... I removed kwrite, but it still starts.

a locate for kwrite gives this:
[code:1]uxstud root # locate kwrite
/home/user/.kde3.1/share/config/kwriterc
/usr/portage/media-sound/xmms/files/xmms-diskwriter-audio.patch
/usr/kde/3.1/lib/kwrited.la
/usr/kde/3.1/lib/kwrite.la
/usr/kde/3.1/lib/kwrite.so
/usr/kde/3.1/lib/kwrited.so
/usr/kde/3.1/bin/kwrited
/usr/kde/3.1/share/doc/HTML/en/kwrite
/usr/kde/3.1/share/doc/HTML/en/kwrite/common
/usr/kde/3.1/share/doc/HTML/en/kwrite/index.docbook
/usr/kde/3.1/share/doc/HTML/en/kwrite/index.cache.bz2
/usr/kde/3.1/share/doc/HTML/sv/kwrite
/usr/kde/3.1/share/doc/HTML/sv/kwrite/common
/usr/kde/3.1/share/doc/HTML/sv/kwrite/index.docbook
/usr/kde/3.1/share/doc/HTML/sv/kwrite/index.cache.bz2
/usr/kde/3.1/share/apps/kwrite
/usr/kde/3.1/share/apps/kwrite/kwriteui.rc
/usr/kde/3.1/share/config/kwritedrc
/usr/kde/3.1/share/services/kwrited.desktop
/usr/kde/3.1/share/icons/crystalsvg/32x32/apps/kwrite.png
/usr/kde/3.1/share/icons/crystalsvg/scalable/apps/kwrite.svgz
/usr/kde/3.1/share/icons/crystalsvg/16x16/apps/kwrite.png
/usr/kde/3.1/share/icons/crystalsvg/48x48/apps/kwrite.png
/usr/kde/3.1/share/icons/crystalsvg/64x64/apps/kwrite.png
/usr/kde/3.1/share/icons/crystalsvg/128x128/apps/kwrite.png
/usr/kde/3.1/share/icons/Locolor/16x16/apps/kwrite.png
/usr/kde/3.1/share/icons/Locolor/32x32/apps/kwrite.png
/usr/kde/3.1/share/icons/kdeclassic/16x16/apps/kwrite.png
/usr/kde/3.1/share/icons/kdeclassic/32x32/apps/kwrite.png
/usr/kde/3.1/share/icons/kdeclassic/48x48/apps/kwrite.png
/usr/kde/3.1/share/icons/slick/16x16/apps/kwrite.png
/usr/kde/3.1/share/icons/slick/32x32/apps/kwrite.png
/usr/kde/3.1/share/icons/slick/48x48/apps/kwrite.png
/usr/kde/3.1/share/autostart/kwrited.desktop
/usr/kde/3.1/share/applnk/Editors/kwrite.desktop
/root/.kde3.1/share/config/kwriterc
/root/.kde3.1/share/thumbnails/16c9/4c83/ff775bea0478defe279ef9ab/60/kwrite.png
/root/.kde3.1/share/thumbnails/f741/25d7/ed4b76461196407ad1068541/60/kwrite.png
/root/.kde3.1/share/thumbnails/2172/4c47/8cd1af6444561acaf476fa33/60/kwrite.png
/root/.kde3.1/share/thumbnails/6ad7/a96d/e9ce7aa7a92d392d5648c332/60/kwrite.png
/root/.kde3.1/share/thumbnails/a448/7778/6e4a06aa388b9ea8afc9c923/60/kwrite.png
/root/.kde3.1/share/thumbnails/b873/42d1/022437297b335ee749f3bce1/60/kwrite.png
/root/.kde3.1/share/thumbnails/1cea/9b84/fcd76091ed9aa991421ec6c8/60/kwrite.png
/root/.kde3.1/share/thumbnails/05c5/2a95/dc4d257cbfddce14bd9355a8/60/kwrite.png
/root/.kde3.1/share/thumbnails/a5ed/4da8/9bea63c42b45895602f389de/60/kwrite.png
/root/.kde3.1/share/thumbnails/eecf/56e7/57b86e3c23e77e8dc1228b34/60/kwrite.png
/root/.kde3.1/share/thumbnails/152f/3a69/ce13d3cfde2edc8fa54987ee/60/kwrite.png
/root/.kde3.1/share/thumbnails/646e/2217/7977936aeccde472e1977b1f/60/kwrite.png
/root/.kde3.1/share/thumbnails/f755/e176/74c0742578e889db7d80a672/60/kwrite.png
/root/user/.kde3.1/share/config/kwriterc
/root/user/.kde3.1/share/applnk/Editors/kwrite.desktop
[/code:1]

After changing permissions on kwrite.so I get this errormessage:
[code:1]KDEInit could not start "kwrite":
Could not dlopen library '/usr/kde/3.1/lib/kwrite.la'.
/usr/kde/3.1/lib/kwrite.so: cannot open shared object file: Permission denied[/code:1]

I removed kwrite.la and kwrite.so, and now I get "Program not found, which is nice.

But it's not exacly "right" that a program will still start after you remove the permissions on the binary in bin/. Since it cannot be read at all from the user it should be reported as permission denied or nonexistant.

How about creating an sbin/ ni kde where you can simply move the binaries that are not to be accessable by anyone but root?