Running BIND (DNS) as a non-root user

On Mac OS X Server 10.3.x the named daemon runs as root. I would like to change this so that named runs as a user (with out a shell). On other flavors of Unix, this typically involves using the "-u" flag when starting named. However, I am still getting familiar with the Mac command line, and how system daemons are started.
XServe G5 Mac OS X (10.3.9)

System services are handled by launchd.
If you look in /System/Library/LaunchDaemons/ you'll see a plist file for each service including org.isc.named.plist, the plist for named.
If you edit this file you'll see it's an XML document that describes the service and how the OS should handle it, including the part:
<key>ProgramArguments</key>
<array>
<string>/usr/sbin/named</string>
<string>-f</string>
</array>
Just append another entry in the array that says <string>-u nobody</string> (or whatever username you want to run as.

Similar Messages

Running VMware Server 2 services as a non-root user

Hello,
I have switched from VirtualBox to VMware Server 2 on my Arch64 server and the transition has been relatively painless. I am at the point now where I want to run VMware's services as a non-root user account (I have a service account called "svc-vmadmin" that I'd like to use). I'm generally not comfortable running services as root, but at the same time I'm conscious of the time and effort required vs. overall benefits.
I've done the usual Google searches and even checked the VMware Server 2 user guide and the VMware community, but I can't find specific details on how to achieve this.
Is this even plausible in a Linux environment? I used to run VMware Server 1 under the SYSTEM account on Windows Server, so I'm hopinga similar thing can be done on Arch.
I would greatly appreciate any information or personal experience that fellow Archers can share.
Thanks,
Thom

System services are handled by launchd.
If you look in /System/Library/LaunchDaemons/ you'll see a plist file for each service including org.isc.named.plist, the plist for named.
If you edit this file you'll see it's an XML document that describes the service and how the OS should handle it, including the part:
<key>ProgramArguments</key>
<array>
<string>/usr/sbin/named</string>
<string>-f</string>
</array>
Just append another entry in the array that says <string>-u nobody</string> (or whatever username you want to run as.

Problem in running servlets over the net & in non-root user mode(FC-4)

I have installed Tomcat 5.0.28 and it is running
successfully in Fedora core 4,I wrote a servlet,to access a mysql database and it is running correctly,but when i logged
onto non-root user, when i call the servlet through the
html page i get "page not found error" .This is happening even when i do it from other system.
I thank in advance if any could help me in this case

Did you try using %20 instead of a space? I know it works for URLs...worth a shot.

ZSNES fails to run as non-root user (X BadAlloc Error) [Solved]

Recently, I noticed that ZSNES failed to start unless it was run by root. The program, when called by a non-root user, would hang after generating the error:
X Error of failed request: BadAlloc (insufficient resources for operation)
Major opcode of failed request: 153 (GLX)
Minor opcode of failed request: 3 (X_GLXCreateContext)
Serial number of failed request: 25
Current serial number in output stream: 26
Does anyone know what permissions need to be fixed to resolve this?
Though I'm not sure if it's useful, here's a backtrace of the error:
#0 0xb79eeab5 in _XReply () from /usr/lib/libX11.so.6
#1 0xb79ea10b in XSync () from /usr/lib/libX11.so.6
#2 0xb7f50cd4 in ?? () from /usr/lib/libSDL-1.2.so.0
#3 0xb7f5920a in ?? () from /usr/lib/libSDL-1.2.so.0
#4 0xb7f46e7b in SDL_VideoQuit () from /usr/lib/libSDL-1.2.so.0
#5 0xb7f1d7dd in SDL_QuitSubSystem () from /usr/lib/libSDL-1.2.so.0
#6 0x082f6994 in ?? ()
#7 0xb7b59611 in __run_exit_handlers () from /usr/lib/libc.so.6
#8 0xb7b5969d in exit () from /usr/lib/libc.so.6
#9 0xb79f0dde in _XDefaultError () from /usr/lib/libX11.so.6
#10 0xb7f59002 in ?? () from /usr/lib/libSDL-1.2.so.0
#11 0xb79f0f16 in _XError () from /usr/lib/libX11.so.6
#12 0xb79ede8e in ?? () from /usr/lib/libX11.so.6
#13 0xb79edee7 in ?? () from /usr/lib/libX11.so.6
#14 0xb79eebe0 in _XReply () from /usr/lib/libX11.so.6
#15 0xb79ea10b in XSync () from /usr/lib/libX11.so.6
#16 0xb7f50cd4 in ?? () from /usr/lib/libSDL-1.2.so.0
#17 0xb7f54ca7 in ?? () from /usr/lib/libSDL-1.2.so.0
#18 0xb7f5ad77 in ?? () from /usr/lib/libSDL-1.2.so.0
#19 0xb7f5b3b0 in ?? () from /usr/lib/libSDL-1.2.so.0
#20 0xb7f47502 in SDL_SetVideoMode () from /usr/lib/libSDL-1.2.so.0
#21 0x082f77c4 in ?? ()
#22 0x082f5997 in ?? ()
#23 0x082f5e41 in ?? ()
#24 0x082f3ab4 in ?? ()
Thanks for any help in this matter.
Last edited by szim90 (2012-11-20 04:52:23)

May I completely change the subject and ask why you might need ZSNES specifically?
Personally I can recommend using something that is actively maintained and updated such as retroarch (wiki) combined with the snes9x-next module (the module is actively maintained).
Another good alternative is mednafen, although it does a lot more than just SNES emulation.

Cannot run privoxy as non-root user

Hi all,
I am having some problems running privoxy as a non-root user. I am not quite sure where to look as I simply get a return / exit status of 1. I didn't see what that maps to on privoxy's site. As an aside, privoxy works fine in my regular install, but in my USB thumbdrive install with AUFS overlay, that is where I am having issues. It might be a filesystem permission issue, but I don't see anything with journalctl -xn or dmesg or privoxy's logs that tells me anything.
Does anyone have any ideas what else to look for?
Thanks,
Walter

Hi,
Thanks for your reply - AUFS is a filesystem (I am running ArchLinux off of an SD card where the rootfs is squashfs with an AUFS overlay). I've had issues with it in the past which turned out to really be permission issues. I had an issue before where CUPS was unable to print because of the permissions, but it fixed itself after an upgrade.
I don't have any error messages to review to make solving the problem any easier. The only thing I verified was I took the systemd unit file and ran the same command as root and privoxy and it worked under root, but failed under privoxy.
Walter

Running as non-root user

How do I run the application server instance as non-root user on port <= 1024?
I am using Sun One Application Server 7.0
Thanks in advance
Sri.

Two options:
1) Start an instance using the root user, but configure the instance to switch to a non-root user upon startup. Use the "User" directive in the init.conf file of an instance to specify the user
http://docs.sun.com/source/816-7155-10/crinit.html#17116
You should also see the "Run As" setting of an instance in the administrative GUI.
2) Via the ndd command, you can set the smallest non-priveleged port number. See ndd documentation concerning the following setting:
tcp_smallest_nonpriv_port
Once you make the ndd setting, you can use a non-root user to listen on a port number that is equal to or greater than the value of the tcp_smallest_nonpriv_port setting.
Chris

Creating a package such that its postinstall script runs as a non-root user

The pkgmap(4) man page I have (says "Last change: 30 Apr 1999"; from SUNWman 42.6,REV=6.1) says of the owner and group fields in a pkgmap entry line:
"This field is not used for linked files or non-installable files. It is used optionally with a package information file. If used, it indicates with what [owner/group] an installation script will be executed."
The pkgmap file I get after running pkgmk on my prototype file contains a line like
    1 i postinstall 292 23672 1166416139for the postinstall script. The man page quote above suggests that if I want the script to be run with user and group fred/staff (say), I can hand-edit this line to instead be
    1 i postinstall fred staff 292 23672 1166416139However, pkgadd doesn't like this, complaining and failing thus:
    pkgadd: ERROR: bad entry read in pkgmap
        pathname=postinstall
        problem=extra tokens on input line
    pkgadd: ERROR: unable to process pkgmapFurthermore, there doesn't seem to be anything I can put in my prototype file to get these fields into the generated pkgmap. The corresponding owner/group fields are syntax errors for a package information file in a prototype file.
All this, and the wording in the Application Packaging Developer's Guide, suggest that the pkgmap man page is wrong and there isn't a way to specify a non-root user and group as which you want your package's install scripts to run.
On the other hand, the pkgadd confirmation "This package contains scripts which will be executed with super-user permission during the process of installing this package. / Do you want to continue with the installation of <PCBBserv> [y,n,?]" suggests that there might be some way to make a package such that it contains scripts which will be executed with ordinary user permissions, and thus not warrant a confirmation.
Any suggestions?
Thanks,
John

tpolich wrote:One more quick question, is rc.local run the backround or say if I asked for input would the system boot hang?
Yes, rc.local itself would hang, but if you background the process inside rc.local using the '&' symbol at the end of the command, then that command will be backgrounded and rc.local can continue.

Non root user can delete root files, bug?

We're having an odd permissions based problem on Solaris 10 u5 x86_64, (new install, fully patched as of 2 days ago) It means that non root users can delete root owned files, which is something I've never seen before, and I've been doing this for almost 10 years.
We're installing into an 80Gb container on VMware ESX server 3.0.1. The OS takes 20Gb (2 processors, 4Gb memory, 8Gb swap) most of the remaining 60Gb is being used as both file systems and raw devices under disksuite as soft partitions. It's one of the file systems, /apps (where we plan to install sybase) that is giving us "issues"
Essentially:
# more /etc/vfstab |grep apps
/dev/md/dsk/d0 /dev/md/rdsk/d0 /apps ufs 2 yes -
# newfs -v /dev/md/rdsk/d0
/dev/md/rdsk/d0: Unable to find Media type. Proceeding with system determined parameters.
newfs: /dev/md/rdsk/d0 last mounted as /apps
newfs: construct a new file system /dev/md/rdsk/d0: (y/n)? y
mkfs -F ufs /dev/md/rdsk/d0 20971520 -1 -1 8192 1024 264 1 546 8192 t 0 -1 8 7 n
/dev/md/rdsk/d0: Unable to find Media type. Proceeding with system determined parameters.
Warning: 4096 sector(s) in last cylinder unallocated
/dev/md/rdsk/d0: 20971520 sectors in 3414 cylinders of 48 tracks, 128 sectors
10240.0MB in 214 cyl groups (16 c/g, 48.00MB/g, 5824 i/g)
super-block backups (for fsck -F ufs -o b=#) at:
32, 98464, 196896, 295328, 393760, 492192, 590624, 689056, 787488, 885920,
20055584, 20154016, 20252448, 20350880, 20449312, 20547744, 20646176,
20744608, 20843040, 20941472
# mount /apps
# ls -al /apps
total 20
drwxr-xr-x 3 root root 512 Sep 10 12:31 .
drwxr-xr-x 38 root root 1024 Sep 10 12:09 ..
drwx------ 2 root root 8192 Sep 10 12:31 lost+found
# su - sybase
Sun Microsystems Inc. SunOS 5.10 Generic January 2005
sol10% cd /apps
sol10% rm *
rm: lost+found is a directory
sol10% rm -rf *
rm: cannot read directory lost+found: Permission denied
sol10% ls -al
total 20
drwxr-xr-x 3 root root 512 Sep 10 12:31 .
drwxr-xr-x 38 root root 1024 Sep 10 12:09 ..
drwx------ 2 root root 8192 Sep 10 12:31 lost+found
sol10% exit
sol10% logout
# chgrp sybase /apps
# chmod g+w /apps
# ls -ald /apps
drwxrwxr-x 3 root sybase 512 Sep 10 12:31 /apps
# ls -al /apps
total 20
drwxrwxr-x 3 root sybase 512 Sep 10 12:31 .
drwxr-xr-x 38 root root 1024 Sep 10 12:09 ..
drwx------ 2 root root 8192 Sep 10 12:31 lost+found
# su - sybase
Sun Microsystems Inc. SunOS 5.10 Generic January 2005
sol10% cd /apps
sol10% rm -rf *
sol10% ls -al
total 4
drwxrwxr-x 2 root sybase 512 Sep 10 12:34 .
drwxr-xr-x 38 root root 1024 Sep 10 12:09 ..
sol10% id
uid=***(sybase) gid=***(sybase)
sol10% exit
sol10% logout
# pwd
# ls -ald /apps
drwxrwxr-x 2 root sybase 512 Sep 10 12:34 /apps
# ls -al /apps
total 4
drwxrwxr-x 2 root sybase 512 Sep 10 12:34 .
drwxr-xr-x 38 root root 1024 Sep 10 12:09 ..
It's a new "bare metal" (in as much as there is no metal) install. I created the sybase user from scratch by hand editing passwd, group and shadow, buy copying and pasting the data out of the NIS maps. All I've done besides the install & patch is setup networking manually, and created the metadb's and the soft partitions and the mount points & newfs'ed & mounted three of them . I then changed ownership of /apps to be sybase:sybase, and handed it to the database team for the sybase install. they came back and said "should we be able to do this?" as they habitually run rm rf * knowing they can't delete root owned files, only now they can... This is true even if I just chgrp the directory and give them group write permissions. They can still delete anything owned by root, even if it doesn't have group permissions just like the lost+found directory. No other "real" machine we have, x86 or SPARC does this, but we've never installed u5 before either.
As you can imagine losing the lost+found directory is a bit of a problem, however what's really worrying me is if they can do that, what happens when they run sybase as the sybase user? If it borks can they trash the OS and write/overwrite random files?
It's a VM, so in as much that's not a problem, but the reason it's a VM is somebody wants to send a VM to a client as a demo, and at present it's highly unstable IMO.
Does anyone have any idea where to start? My thoughts are that it may be a VMware issue, (though the hardware and the guest OS is supported) it could be a bug, because I've never seen that weird newfs error before, and then I found this:
http://bugs.opensolaris.org/bugdatabase/view_bug.do?bug_id=6622243
Or it could be me, and the fact that I'm hand configuring it, and u5 now requires I do it "properly" with useradd, etc. I'd like to test, but the guy wants it built, and wants it now, so I patched it up, and gave it back to the database team and told them to be careful.
I'd be interested in you opinions regardless.
The full spec of the "machine" is below, sol10 is not it's name for obvious reasons, and I've hashed out the ID & GIUD for similar reasons.
# uname -a
SunOS sol10 5.10 Generic_127128-11 i86pc i386 i86pc
# prtdiag
System Configuration: VMware, Inc. VMware Virtual Platform
BIOS Configuration: Phoenix Technologies LTD 6.00 09/06/2007
==== Processor Sockets ====================================
Version Location Tag
Pentium(R) Pro CPU socket #0
Pentium(R) Pro CPU socket #1
==== Memory Device Sockets ================================
Type Status Set Device Locator Bank Locator
DRAM in use 0 RAM slot #0 RAM slot #0
DRAM in use 0 RAM slot #1 RAM slot #1
DRAM in use 0 RAM slot #2 RAM slot #2
DRAM in use 0 RAM slot #3 RAM slot #3
==== On-Board Devices =====================================
VMware SVGA II
ES1371
==== Upgradeable Slots ====================================
ID Status Type Description
0 unknown ISA ISA Slot J8
0 unknown ISA ISA Slot J9
0 unknown ISA ISA Slot J10
1 in use PCI PCI Slot J11
2 in use PCI PCI Slot J12
3 in use PCI PCI Slot J13
4 available PCI PCI Slot J14
# dmesg
Wednesday, 10 September 2008 15:33:35 BST
Sep 10 10:17:44 sol10 busra: [ID 490441 kern.info] NOTICE: ndi_ra_free: bad free, dip ffffffff803807a8, resource type memory
Sep 10 10:17:44 sol10 busra: [ID 883242 kern.info] NOTICE: ndi_ra_free: freeing base 0xe0000, len 0x4000 overlaps with existing resource base 0x0, len 0xf4000000
Sep 10 10:17:44 sol10 rootnex: [ID 349649 kern.info] pci0 at root: space 0 offset 0
Sep 10 10:17:44 sol10 genunix: [ID 936769 kern.info] pci0 is /pci@0,0
Sep 10 10:17:44 sol10 scsi: [ID 365881 kern.info] /pci@0,0/pci1000,30@10 (mpt0):
Sep 10 10:17:44 sol10 Rev. 1 LSI, Inc. 1030 found.
Sep 10 10:17:44 sol10 pcplusmp: [ID 637496 kern.info] pcplusmp: pci1000,30 (mpt) instance 0 vector 0x11 ioapic 0x2 intin 0x11 is bound to cpu 0
Sep 10 10:17:44 sol10 scsi: [ID 365881 kern.info] /pci@0,0/pci1000,30@10 (mpt0):
Sep 10 10:17:44 sol10 mpt0 Firmware version v0.0.0.0 (?)
Sep 10 10:17:44 sol10 scsi: [ID 365881 kern.info] /pci@0,0/pci1000,30@10 (mpt0):
Sep 10 10:17:44 sol10 mpt0: IOC Operational.
Sep 10 10:17:44 sol10 pci: [ID 370704 kern.info] PCI-device: pci1000,30@10, mpt0
Sep 10 10:17:44 sol10 genunix: [ID 936769 kern.info] mpt0 is /pci@0,0/pci1000,30@10
Sep 10 10:17:44 sol10 scsi: [ID 193665 kern.info] sd0 at mpt0: target 0 lun 0
Sep 10 10:17:44 sol10 genunix: [ID 936769 kern.info] sd0 is /pci@0,0/pci1000,30@10/sd@0,0
Sep 10 10:17:44 sol10 genunix: [ID 408114 kern.info] /pci@0,0/pci1000,30@10/sd@0,0 (sd0) online
Sep 10 10:17:44 sol10 unix: [ID 190185 kern.info] SMBIOS v2.31 loaded (1695 bytes)
Sep 10 10:17:44 sol10 genunix: [ID 408114 kern.info] /cpus (cpunex0) online
Sep 10 10:17:44 sol10 pseudo: [ID 129642 kern.info] pseudo-device: dld0
Sep 10 10:17:44 sol10 genunix: [ID 936769 kern.info] dld0 is /pseudo/dld@0
Sep 10 10:17:44 sol10 pcplusmp: [ID 637496 kern.info] pcplusmp: i8042 (i8042) instance 0 vector 0x1 ioapic 0x2 intin 0x1 is bound to cpu 1
Sep 10 10:17:44 sol10 pcplusmp: [ID 398438 kern.info] pcplusmp: i8042 (i8042) instance #0 vector 0xc ioapic 0x2 intin 0xc is bound to cpu 1
Sep 10 10:17:44 sol10 i8042: [ID 526150 kern.info] 8042 device: keyboard@0, kb8042 # 0
Sep 10 10:17:44 sol10 genunix: [ID 936769 kern.info] kb80420 is /isa/i8042@1,60/keyboard@0
Sep 10 10:17:44 sol10 i8042: [ID 526150 kern.info] 8042 device: mouse@1, mouse8042 # 0
Sep 10 10:17:44 sol10 genunix: [ID 936769 kern.info] mouse80420 is /isa/i8042@1,60/mouse@1
Sep 10 10:17:44 sol10 unix: [ID 950921 kern.info] cpu0: x86 (GenuineIntel family 6 model 15 step 8 clock 2000 MHz)
Sep 10 10:17:44 sol10 unix: [ID 950921 kern.info] cpu0: Intel(r) Xeon(r) CPU E5335 @ 2.00GHz
Sep 10 10:17:47 sol10 unix: [ID 950921 kern.info] cpu1: x86 (GenuineIntel family 6 model 15 step 8 clock 2000 MHz)
Sep 10 10:17:47 sol10 unix: [ID 950921 kern.info] cpu1: Intel(r) Xeon(r) CPU E5335 @ 2.00GHz
Sep 10 10:17:47 sol10 unix: [ID 557827 kern.info] cpu1 initialization complete - online
Sep 10 10:17:47 sol10 rootnex: [ID 349649 kern.info] iscsi0 at root
Sep 10 10:17:47 sol10 genunix: [ID 936769 kern.info] iscsi0 is /iscsi
Sep 10 10:17:52 sol10 genunix: [ID 454863 kern.info] dump on /dev/dsk/c1t0d0s1 size 8197 MB
Sep 10 10:17:53 sol10 pci: [ID 370704 kern.info] PCI-device: pci8086,7191@1, pci_pci0
Sep 10 10:17:53 sol10 genunix: [ID 936769 kern.info] pci_pci0 is /pci@0,0/pci8086,7191@1
Sep 10 10:17:54 sol10 mac: [ID 469746 kern.info] NOTICE: e1000g0 registered
Sep 10 10:17:54 sol10 pcplusmp: [ID 637496 kern.info] pcplusmp: pci8086,100f (e1000g) instance 0 vector 0x12 ioapic 0x2 intin 0x12 is bound to cpu 0
Sep 10 10:17:54 sol10 e1000g: [ID 766679 kern.info] Intel(R) PRO/1000 Network Connection, Driver Ver. 5.1.11
Sep 10 10:17:54 sol10 pseudo: [ID 129642 kern.info] pseudo-device: zfs0
Sep 10 10:17:54 sol10 genunix: [ID 936769 kern.info] zfs0 is /pseudo/zfs@0
Sep 10 10:17:55 sol10 pseudo: [ID 129642 kern.info] pseudo-device: pm0
Sep 10 10:17:55 sol10 genunix: [ID 936769 kern.info] pm0 is /pseudo/pm@0
Sep 10 10:17:55 sol10 pseudo: [ID 129642 kern.info] pseudo-device: power0
Sep 10 10:17:55 sol10 genunix: [ID 936769 kern.info] power0 is /pseudo/power@0
Sep 10 10:17:56 sol10 pseudo: [ID 129642 kern.info] pseudo-device: devinfo0
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] devinfo0 is /pseudo/devinfo@0
Sep 10 10:17:56 sol10 rootnex: [ID 349649 kern.info] xsvc0 at root
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] xsvc0 is /xsvc
Sep 10 10:17:56 sol10 pseudo: [ID 129642 kern.info] pseudo-device: pseudo1
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] pseudo1 is /pseudo/zconsnex@1
Sep 10 10:17:56 sol10 pcplusmp: [ID 637496 kern.info] pcplusmp: lp (ecpp) instance 0 vector 0x7 ioapic 0x2 intin 0x7 is bound to cpu 1
Sep 10 10:17:56 sol10 isa: [ID 202937 kern.info] ISA-device: ecpp0
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] ecpp0 is /isa/lp@1,378
Sep 10 10:17:56 sol10 pcplusmp: [ID 637496 kern.info] pcplusmp: asy (asy) instance 0 vector 0x4 ioapic 0x2 intin 0x4 is bound to cpu 0
Sep 10 10:17:56 sol10 isa: [ID 202937 kern.info] ISA-device: asy0
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] asy0 is /isa/asy@1,3f8
Sep 10 10:17:56 sol10 pcplusmp: [ID 398438 kern.info] pcplusmp: asy (asy) instance #1 vector 0x3 ioapic 0x2 intin 0x3 is bound to cpu 0
Sep 10 10:17:56 sol10 isa: [ID 202937 kern.info] ISA-device: asy1
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] asy1 is /isa/asy@1,2f8
Sep 10 10:17:56 sol10 pcplusmp: [ID 637496 kern.info] pcplusmp: ide (ata) instance 0 vector 0xe ioapic 0x2 intin 0xe is bound to cpu 1
Sep 10 10:17:56 sol10 pcplusmp: [ID 637496 kern.info] pcplusmp: ide (ata) instance 0 vector 0xe ioapic 0x2 intin 0xe is bound to cpu 0
Sep 10 10:17:56 sol10 genunix: [ID 640982 kern.info] ATAPI device at targ 0, lun 0 lastlun 0x0
Sep 10 10:17:56 sol10 genunix: [ID 846691 kern.info] model VMware Virtual IDE CDROM Drive
Sep 10 10:17:56 sol10 genunix: [ID 479077 kern.info] ATA/ATAPI-4 supported, majver 0x1e minver 0x17
Sep 10 10:17:56 sol10 pci: [ID 370704 kern.info] PCI-device: ide@0, ata0
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] ata0 is /pci@0,0/pci-ide@7,1/ide@0
Sep 10 10:17:56 sol10 genunix: [ID 935449 kern.info] ATA DMA off: disabled. Control with "atapi-cd-dma-enabled" property
Sep 10 10:17:56 sol10 genunix: [ID 882269 kern.info] PIO mode 4 selected
Sep 10 10:17:56 sol10 genunix: [ID 935449 kern.info] ATA DMA off: disabled. Control with "atapi-cd-dma-enabled" property
Sep 10 10:17:56 sol10 genunix: [ID 882269 kern.info] PIO mode 4 selected
Sep 10 10:17:56 sol10 genunix: [ID 935449 kern.info] ATA DMA off: disabled. Control with "atapi-cd-dma-enabled" property
Sep 10 10:17:56 sol10 genunix: [ID 882269 kern.info] PIO mode 4 selected
Sep 10 10:17:56 sol10 genunix: [ID 935449 kern.info] ATA DMA off: disabled. Control with "atapi-cd-dma-enabled" property
Sep 10 10:17:56 sol10 genunix: [ID 882269 kern.info] PIO mode 4 selected
Sep 10 10:17:56 sol10 scsi: [ID 193665 kern.info] sd1 at ata0: target 0 lun 0
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] sd1 is /pci@0,0/pci-ide@7,1/ide@0/sd@0,0
Sep 10 10:17:56 sol10 pcplusmp: [ID 637496 kern.info] pcplusmp: fdc (fdc) instance 0 vector 0x6 ioapic 0x2 intin 0x6 is bound to cpu 1
Sep 10 10:17:56 sol10 isa: [ID 202937 kern.info] ISA-device: fdc0
Sep 10 10:17:56 sol10 fdc: [ID 114370 kern.info] fd0 at fdc0
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] fd0 is /isa/fdc@1,3f0/fd@0,0
Sep 10 10:17:56 sol10 genunix: [ID 314293 kern.info] device pciclass,030000@f(display#0) keeps up device sd@0,0(sd#1), but the latter is not power managed
Sep 10 10:17:56 sol10 pseudo: [ID 129642 kern.info] pseudo-device: nvidia255
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] nvidia255 is /pseudo/nvidia@255
Sep 10 10:17:56 sol10 pseudo: [ID 129642 kern.info] pseudo-device: ramdisk1024
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] ramdisk1024 is /pseudo/ramdisk@1024
Sep 10 10:17:56 sol10 pseudo: [ID 129642 kern.info] pseudo-device: lockstat0
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] lockstat0 is /pseudo/lockstat@0
Sep 10 10:17:56 sol10 pseudo: [ID 129642 kern.info] pseudo-device: llc10
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] llc10 is /pseudo/llc1@0
Sep 10 10:17:56 sol10 pseudo: [ID 129642 kern.info] pseudo-device: lofi0
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] lofi0 is /pseudo/lofi@0
Sep 10 10:17:56 sol10 pseudo: [ID 129642 kern.info] pseudo-device: dtrace0
Sep 10 10:17:56 sol10 genunix: [ID 936769 kern.info] dtrace0 is /pseudo/dtrace@0
Sep 10 10:17:57 sol10 pseudo: [ID 129642 kern.info] pseudo-device: profile0
Sep 10 10:17:57 sol10 genunix: [ID 936769 kern.info] profile0 is /pseudo/profile@0
Sep 10 10:17:57 sol10 pseudo: [ID 129642 kern.info] pseudo-device: systrace0
Sep 10 10:17:57 sol10 genunix: [ID 936769 kern.info] systrace0 is /pseudo/systrace@0
Sep 10 10:17:57 sol10 pseudo: [ID 129642 kern.info] pseudo-device: fbt0
Sep 10 10:17:57 sol10 genunix: [ID 936769 kern.info] fbt0 is /pseudo/fbt@0
Sep 10 10:17:57 sol10 pseudo: [ID 129642 kern.info] pseudo-device: sdt0
Sep 10 10:17:57 sol10 genunix: [ID 936769 kern.info] sdt0 is /pseudo/sdt@0
Sep 10 10:17:57 sol10 pseudo: [ID 129642 kern.info] pseudo-device: fasttrap0
Sep 10 10:17:57 sol10 genunix: [ID 936769 kern.info] fasttrap0 is /pseudo/fasttrap@0
Sep 10 10:17:57 sol10 pseudo: [ID 129642 kern.info] pseudo-device: fcp0
Sep 10 10:17:57 sol10 genunix: [ID 936769 kern.info] fcp0 is /pseudo/fcp@0
Sep 10 10:17:57 sol10 pseudo: [ID 129642 kern.info] pseudo-device: fcsm0
Sep 10 10:17:57 sol10 genunix: [ID 936769 kern.info] fcsm0 is /pseudo/fcsm@0
Sep 10 10:17:57 sol10 pseudo: [ID 129642 kern.info] pseudo-device: lx_systrace0
Sep 10 10:17:57 sol10 genunix: [ID 936769 kern.info] lx_systrace0 is /pseudo/lx_systrace@0
Sep 10 10:17:57 sol10 pseudo: [ID 129642 kern.info] pseudo-device: ucode0
Sep 10 10:17:57 sol10 genunix: [ID 936769 kern.info] ucode0 is /pseudo/ucode@0
Sep 10 10:17:57 sol10 pseudo: [ID 129642 kern.info] pseudo-device: fssnap0
Sep 10 10:17:57 sol10 genunix: [ID 936769 kern.info] fssnap0 is /pseudo/fssnap@0
Sep 10 10:17:57 sol10 pseudo: [ID 129642 kern.info] pseudo-device: winlock0
Sep 10 10:17:57 sol10 genunix: [ID 936769 kern.info] winlock0 is /pseudo/winlock@0
Sep 10 10:17:57 sol10 pseudo: [ID 129642 kern.info] pseudo-device: vol0
Sep 10 10:17:57 sol10 genunix: [ID 936769 kern.info] vol0 is /pseudo/vol@0
Sep 10 10:17:57 sol10 pseudo: [ID 129642 kern.info] pseudo-device: rsm0
Sep 10 10:17:57 sol10 genunix: [ID 936769 kern.info] rsm0 is /pseudo/rsm@0
Sep 10 10:17:57 sol10 pseudo: [ID 129642 kern.info] pseudo-device: pool0
Sep 10 10:17:57 sol10 genunix: [ID 936769 kern.info] pool0 is /pseudo/pool@0
Sep 10 10:17:57 sol10 ipf: [ID 774698 kern.info] IP Filter: v4.1.9, running.
Sep 10 10:18:05 sol10 nfs4cbd[395]: [ID 867284 daemon.notice] nfsv4 cannot determine local hostname binding for transport tcp - delegations will not be available on this transport
Sep 10 10:18:10 sol10 sendmail[598]: [ID 702911 mail.crit] My unqualified host name (localhost) unknown; sleeping for retry
Sep 10 10:18:10 sol10 sendmail[600]: [ID 702911 mail.crit] My unqualified host name (localhost) unknown; sleeping for retry
Sep 10 10:18:17 sol10 mac: [ID 736570 kern.info] NOTICE: e1000g0 unregistered
Sep 10 10:19:10 sol10 sendmail[598]: [ID 702911 mail.alert] unable to qualify my own domain name (localhost) -- using short name
Sep 10 10:19:10 sol10 sendmail[600]: [ID 702911 mail.alert] unable to qualify my own domain name (localhost) -- using short name
Sep 10 10:20:10 sol10 pseudo: [ID 129642 kern.info] pseudo-device: devinfo0
Sep 10 10:20:10 sol10 genunix: [ID 936769 kern.info] devinfo0 is /pseudo/devinfo@0
Sep 10 10:24:54 sol10 mac: [ID 469746 kern.info] NOTICE: e1000g0 registered
Sep 10 10:24:54 sol10 pcplusmp: [ID 637496 kern.info] pcplusmp: pci8086,100f (e1000g) instance 0 vector 0x12 ioapic 0x2 intin 0x12 is bound to cpu 0
Sep 10 10:24:54 sol10 e1000g: [ID 766679 kern.info] Intel(R) PRO/1000 Network Connection, Driver Ver. 5.1.11
Sep 10 10:24:59 sol10 e1000g: [ID 801725 kern.info] NOTICE: pci8086,100f - e1000g[0] : Adapter 1000Mbps full duplex copper link is up.
Sep 10 10:28:21 sol10 in.routed[502]: [ID 798604 daemon.error] empty response from 129.0.1.124
Sep 10 10:35:17 sol10 genunix: [ID 935449 kern.info] ATA DMA off: disabled. Control with "atapi-cd-dma-enabled" property
Sep 10 10:35:17 sol10 genunix: [ID 882269 kern.info] PIO mode 4 selected
Sep 10 10:35:17 sol10 genunix: [ID 935449 kern.info] ATA DMA off: disabled. Control with "atapi-cd-dma-enabled" property
Sep 10 10:35:17 sol10 genunix: [ID 882269 kern.info] PIO mode 4 selected
Sep 10 10:35:17 sol10 genunix: [ID 935449 kern.info] ATA DMA off: disabled. Control with "atapi-cd-dma-enabled" property
Sep 10 10:35:17 sol10 genunix: [ID 882269 kern.info] PIO mode 4 selected
Sep 10 10:35:17 sol10 genunix: [ID 935449 kern.info] ATA DMA off: disabled. Control with "atapi-cd-dma-enabled" property
Sep 10 10:35:17 sol10 genunix: [ID 882269 kern.info] PIO mode 4 selected
Sep 10 10:35:17 sol10 pcplusmp: [ID 637496 kern.info] pcplusmp: lp (ecpp) instance 0 vector 0x7 ioapic 0x2 intin 0x7 is bound to cpu 1
Sep 10 10:35:17 sol10 isa: [ID 202937 kern.info] ISA-device: ecpp0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] ecpp0 is /isa/lp@1,378
Sep 10 10:35:17 sol10 pcplusmp: [ID 637496 kern.info] pcplusmp: asy (asy) instance 0 vector 0x4 ioapic 0x2 intin 0x4 is bound to cpu 0
Sep 10 10:35:17 sol10 isa: [ID 202937 kern.info] ISA-device: asy0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] asy0 is /isa/asy@1,3f8
Sep 10 10:35:17 sol10 pcplusmp: [ID 398438 kern.info] pcplusmp: asy (asy) instance #1 vector 0x3 ioapic 0x2 intin 0x3 is bound to cpu 0
Sep 10 10:35:17 sol10 isa: [ID 202937 kern.info] ISA-device: asy1
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] asy1 is /isa/asy@1,2f8
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: nvidia255
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] nvidia255 is /pseudo/nvidia@255
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: ramdisk1024
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] ramdisk1024 is /pseudo/ramdisk@1024
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: lockstat0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] lockstat0 is /pseudo/lockstat@0
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: llc10
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] llc10 is /pseudo/llc1@0
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: lofi0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] lofi0 is /pseudo/lofi@0
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: profile0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] profile0 is /pseudo/profile@0
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: systrace0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] systrace0 is /pseudo/systrace@0
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: fbt0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] fbt0 is /pseudo/fbt@0
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: sdt0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] sdt0 is /pseudo/sdt@0
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: fcp0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] fcp0 is /pseudo/fcp@0
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: fcsm0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] fcsm0 is /pseudo/fcsm@0
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: lx_systrace0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] lx_systrace0 is /pseudo/lx_systrace@0
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: ucode0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] ucode0 is /pseudo/ucode@0
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: fssnap0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] fssnap0 is /pseudo/fssnap@0
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: winlock0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] winlock0 is /pseudo/winlock@0
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: pm0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] pm0 is /pseudo/pm@0
Sep 10 10:35:17 sol10 pseudo: [ID 129642 kern.info] pseudo-device: rsm0
Sep 10 10:35:17 sol10 genunix: [ID 936769 kern.info] rsm0 is /pseudo/rsm@0
Sep 10 10:55:50 sol10 genunix: [ID 935449 kern.info] ATA DMA off: disabled. Control with "atapi-cd-dma-enabled" property
Sep 10 10:55:50 sol10 genunix: [ID 882269 kern.info] PIO mode 4 selected
Sep 10 10:55:50 sol10 genunix: [ID 935449 kern.info] ATA DMA off: disabled. Control with "atapi-cd-dma-enabled" property
Sep 10 10:55:50 sol10 genunix: [ID 882269 kern.info] PIO mode 4 selected
Sep 10 10:55:50 sol10 genunix: [ID 935449 kern.info] ATA DMA off: disabled. Control with "atapi-cd-dma-enabled" property
Sep 10 10:55:50 sol10 genunix: [ID 882269 kern.info] PIO mode 4 selected
Sep 10 10:55:50 sol10 genunix: [ID 935449 kern.info] ATA DMA off: disabled. Control with "atapi-cd-dma-enabled" property
Sep 10 10:55:50 sol10 genunix: [ID 882269 kern.info] PIO mode 4 selected
Sep 10 11:28:55 sol10 in.routed[502]: [ID 798604 daemon.error] empty response from 129.0.1.124
Sep 10 12:28:56 sol10 in.routed[502]: [ID 798604 daemon.error] empty response from 129.0.1.124
Sep 10 13:29:01 sol10 in.routed[502]: [ID 798604 daemon.error] empty response from 129.0.1.124
Sep 10 14:29:10 sol10 in.routed[502]: [ID 798604 daemon.error] empty response from 129.0.1.124
Sep 10 15:29:38 sol10 in.routed[502]: [ID 798604 daemon.error] empty response from 129.0.1.124
# prtconf
System Configuration: Sun Microsystems i86pc
Memory size: 4132 Megabytes
System Peripherals (Software Nodes):
i86pc
scsi_vhci, instance #0
isa, instance #0
i8042, instance #0
keyboard, instance #0
mouse, instance #0
lp, instance #0
asy, instance #0
asy, instance #1
fdc, instance #0
fd, instance #0
pci, instance #0
pci15ad,1976 (driver not attached)
pci8086,7191, instance #0
pci15ad,1976 (driver not attached)
pci-ide, instance #0
ide, instance #0
sd, instance #1
ide (driver not attached)
pci15ad,1976 (driver not attached)
display, instance #0
pci1000,30, instance #0
sd, instance #0
pci15ad,750, instance #0
iscsi, instance #0
pseudo, instance #0
options, instance #0
agpgart, instance #0
xsvc, instance #0
objmgr, instance #0
acpi (driver not attached)
used-resources (driver not attached)
cpus, instance #0
cpu (driver not attached)
cpu (driver not attached)
# format
Searching for disks...done
AVAILABLE DISK SELECTIONS:
0. c1t0d0 <DEFAULT cyl 10440 alt 2 hd 255 sec 63>
/pci@0,0/pci1000,30@10/sd@0,0
Specify disk (enter its number): 0
selecting c1t0d0
[disk formatted]
Warning: Current Disk has mounted partitions.
/dev/dsk/c1t0d0s0 is currently mounted on /. Please see umount(1M).
/dev/dsk/c1t0d0s1 is currently used by swap. Please see swap(1M).
/dev/dsk/c1t0d0s3 is currently mounted on /usr. Please see umount(1M).
/dev/dsk/c1t0d0s4 is currently mounted on /var. Please see umount(1M).
/dev/dsk/c1t0d0s5 is currently mounted on /opt. Please see umount(1M).
/dev/dsk/c1t0d0s6 is part of SVM volume sp:d8. Please see metaclear(1M).
/dev/dsk/c1t0d0s7 contains an SVM mdb. Please see metadb(1M).
FORMAT MENU:
disk - select a disk
type - select (define) a disk type
partition - select (define) a partition table
current - describe the current disk
format - format and analyze the disk
fdisk - run the fdisk program
repair - repair a defective sector
label - write label to the disk
analyze - surface analysis
defect - defect list management
backup - search for backup labels
verify - read and display labels
save - save new disk/partition definitions
inquiry - show vendor, product and revision
volname - set 8-character volume name
!<cmd> - execute <cmd>, then return
quit
format> p
PARTITION MENU:
0 - change `0' partition
1 - change `1' partition
2 - change `2' partition
3 - change `3' partition
4 - change `4' partition
5 - change `5' partition
6 - change `6' partition
7 - change `7' partition
select - select a predefined table
modify - modify a predefined partition table
name - name the current table
print - display the current table
label - write partition map and label to the disk
!<cmd> - execute <cmd>, then return
quit
partition> p
Current partition table (original):
Total disk cylinders available: 10440 + 2 (reserved cylinders)
Part Tag Flag Cylinders Size Blocks
0 root wm 1 - 131 1.00GB (131/0/0) 2104515
1 swap wu 132 - 1176 8.01GB (1045/0/0) 16787925
2 backup wm 0 - 10439 79.97GB (10440/0/0) 167718600
3 usr wm 1177 - 1829 5.00GB (653/0/0) 10490445
4 var wm 1830 - 2091 2.01GB (262/0/0) 4209030
5 unassigned wm 2092 - 2614 4.01GB (523/0/0) 8401995
6 unassigned wm 2617 - 10439 59.93GB (7823/0/0) 125676495
7 unassigned wm 2615 - 2616 15.69MB (2/0/0) 32130
8 boot wu 0 - 0 7.84MB (1/0/0) 16065
9 unassigned wm 0 0 (0/0/0) 0
partition> quit
FORMAT MENU:
disk - select a disk
type - select (define) a disk type
partition - select (define) a partition table
current - describe the current disk
format - format and analyze the disk
fdisk - run the fdisk program
repair - repair a defective sector
label - write label to the disk
analyze - surface analysis
defect - defect list management
backup - search for backup labels
verify - read and display labels
save - save new disk/partition definitions
inquiry - show vendor, product and revision
volname - set 8-character volume name
!<cmd> - execute <cmd>, then return
quit
format> q
# metastat -p
d8 -p c1t0d0s6 -o 109973513 -b 61440
d7 -p c1t0d0s6 -o 109461512 -b 512000
d6 -p c1t0d0s6 -o 109051911 -b 409600
d5 -p c1t0d0s6 -o 88080390 -b 20971520
d4 -p c1t0d0s6 -o 67108869 -b 20971520
d3 -p c1t0d0s6 -o 46137348 -b 20971520
d2 -p c1t0d0s6 -o 41943043 -b 4194304
d1 -p c1t0d0s6 -o 20971522 -b 20971520
d0 -p c1t0d0s6 -o 1 -b 20971520

An easy way to think of it is this -- everything in Unix is a file. Including directories; they are just a file which contains a list of the files in that directory, and pointers to them.
If the 'sybase' user has write permission on the directory, they have permission to edit that "list", and can add or remove files to the list. It doesn't matter who the files on the list belong to, because the files are not what is being modified. Only the list of files is being modified. (Of course, in Unix, if you erase the file's listing from all of the lists it's on, the file itself goes away for housekeeping purposes.)
One thing that would have stopped the 'sybase' user from removing the lost+found directory is if that directory itself had files in it -- without write permission to the lost+found directory, that user could not have removed those files, and since one cannot remove a non-empty directory, that operation would have failed. Since lost+found was empty in this case, it could be removed simply by having permission to write to the /apps directory.
This behavior does change if you set the sticky bit on the directory -- in that case, files may only be removed by the owner of the file or directory, or if the user has write permission to the file. This would have prevented the sybase user from removing the lost+found directory. (Note, this also applies to the 'rename' function call.) This would probably be the best way to handle your situation, since you apparently do want the sybase user to be able to add files to /apps, but do not want them to be able to remove lost+found.
Edited by: MadBishop on Sep 12, 2008 7:46 AM

Non-root user can't start Apache on port 443

Today I've been attempting to get SSL working for my Oracle Applications 11i (11.5.10.2) installation and I just hit a small problem. I've followed all of the Oracle literature I've come across, which instructed me to create a new (non-root) user to own the database tier and the applications tier. I've also followed the instructions for configuring SSL ([Doc 123718.1|https://metalink2.oracle.com/metalink/plsql/f?p=130:14:6976756808231635106::::p14_database_id,p14_docid,p14_show_header,p14_show_help,p14_black_frame,p14_font:NOT,123718.1,1,1,1,helvetica]) and the SSL wizard in OAM defaults to the standard HTTPS port (443). However, because 443 is a privileged port, a non-root user cannot bind to it. In other words, the Oracle literature itself has led me to an impossible situation. This is what I see in the Apache error log:
[Fri May 15 15:05:03 2009] [crit] (13)Permission denied: make_sock: could not bind to port 443
At this point, I see two choices:
1. Run the application tier services as root.
2. Change the SSL port to something greater than 1024 (i.e. 4443).
I'm leaning towards option #2, since option #1 negates the advantage of using a non-root user to begin with. Does anyone have any other suggestions? Does Oracle have any recommendations for this scenario?

Hi,
You just need to start Apache as root (not all the application services). For Option 1, the application tier files should be owned by applmgr/oracle user (not root), and for Option 2, you do not need to change the port (though it is valid option). Just follow the steps in the following document.
Note: 356080.1 - How to run Apache on Port 80 in Apps 11i
https://metalink2.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=356080.1
BTW, this is mentioned in the document "if you have chosen port 443 (or any port under 1024) for your SSL port, you will have to start Apache as root".
Regards,
Hussein

How to make none root user to connect to TCP Port (web ports)

how to make none root user (any user)
to connect to TCP Port 80 or port 81 or any port less than 1024
cause i have web server i want to run and stop service with none root userand on port 80 and port 81
can you help me and give me steps

I believe Solaris 9 also has RBAC control. If so then all you need to do is present the uid with the PRIV_NET_PRIVADDR privilege. See the privielegs(5) manpage for more information on the subject.
This privilege will allow the userid to bind to ports < 1024. You can give a user this privilege either by using usermod (you will probably need the auth_attr(4) manpage as well) after which you need to login again. Or you can try using ppriv to modify the privileges on the users shell.

[SOLVED] Xorg not starting on non-root user [My First Linux]

Hello, I recently turned back to linux after digging up my old ASUS EEE 900a, which I messed up with partitioning fun after trying to cram Windows XP on it and etc. Anyways, I managed to fix it, and after Ubuntu being too big, I was turned on to Arch as a good distro, and I've been having a very good time setting everything up so far.
Anyways: My issue arises after needing to use a different user in order to use Chrome. I created a new account and tried to run startx like I usually do. It spat out the usual few lines, but failed and gave me this log:
[ 4616.974]
X.Org X Server 1.14.1
Release Date: 2013-04-17
[ 4616.974] X Protocol Version 11, Revision 0
[ 4616.974] Build Operating System: Linux 3.8.7-1-ARCH i686
[ 4616.974] Current Operating System: Linux archieee 3.9.4-1-ARCH #1 SMP PREEMPT Sun May 26 11:56:48 CEST 2013 i686
[ 4616.975] Kernel command line: root=/dev/sda1 ro initrd=../initramfs-linux.img BOOT_IMAGE=../vmlinuz-linux
[ 4616.975] Build Date: 17 April 2013 02:43:06PM
[ 4616.975]
[ 4616.975] Current version of pixman: 0.30.0
[ 4616.975] Before reporting problems, check http://wiki.x.org
to make sure that you have the latest version.
[ 4616.975] Markers: (--) probed, (**) from config file, (==) default setting,
(++) from command line, (!!) notice, (II) informational,
(WW) warning, (EE) error, (NI) not implemented, (??) unknown.
[ 4616.977] (==) Log file: "/var/log/Xorg.0.log", Time: Tue Jun 4 21:56:02 2013
[ 4616.977] (==) Using config directory: "/etc/X11/xorg.conf.d"
[ 4616.978] (==) No Layout section. Using the first Screen section.
[ 4616.978] (==) No screen section available. Using defaults.
[ 4616.978] (**) |-->Screen "Default Screen Section" (0)
[ 4616.978] (**) | |-->Monitor "<default monitor>"
[ 4616.978] (==) No monitor specified for screen "Default Screen Section".
Using a default monitor configuration.
[ 4616.978] (==) Automatically adding devices
[ 4616.978] (==) Automatically enabling devices
[ 4616.978] (==) Automatically adding GPU devices
[ 4616.978] (WW) The directory "/usr/share/fonts/OTF/" does not exist.
[ 4616.978] Entry deleted from font path.
[ 4616.978] (WW) The directory "/usr/share/fonts/Type1/" does not exist.
[ 4616.978] Entry deleted from font path.
[ 4616.978] (WW) `fonts.dir' not found (or not valid) in "/usr/share/fonts/100dpi/".
[ 4616.978] Entry deleted from font path.
[ 4616.978] (Run 'mkfontdir' on "/usr/share/fonts/100dpi/").
[ 4616.979] (WW) `fonts.dir' not found (or not valid) in "/usr/share/fonts/75dpi/".
[ 4616.979] Entry deleted from font path.
[ 4616.979] (Run 'mkfontdir' on "/usr/share/fonts/75dpi/").
[ 4616.979] (==) FontPath set to:
/usr/share/fonts/misc/,
/usr/share/fonts/TTF/
[ 4616.979] (==) ModulePath set to "/usr/lib/xorg/modules"
[ 4616.979] (II) The server relies on udev to provide the list of input devices.
If no devices become available, reconfigure udev or disable AutoAddDevices.
[ 4616.979] (II) Loader magic: 0x8258620
[ 4616.979] (II) Module ABI versions:
[ 4616.979] X.Org ANSI C Emulation: 0.4
[ 4616.979] X.Org Video Driver: 14.1
[ 4616.979] X.Org XInput driver : 19.1
[ 4616.979] X.Org Server Extension : 7.0
[ 4616.980] (II) config/udev: Adding drm device (/dev/dri/card0)
[ 4616.983] (--) PCI:*(0:0:2:0) 8086:27ae:1043:8340 rev 3, Mem @ 0xf3e00000/524288, 0xd0000000/268435456, 0xf3dc0000/262144, I/O @ 0x0000cc00/8
[ 4616.983] (--) PCI: (0:0:2:1) 8086:27a6:1043:8340 rev 3, Mem @ 0xf3e80000/524288
[ 4616.983] Initializing built-in extension Generic Event Extension
[ 4616.983] Initializing built-in extension SHAPE
[ 4616.984] Initializing built-in extension MIT-SHM
[ 4616.984] Initializing built-in extension XInputExtension
[ 4616.984] Initializing built-in extension XTEST
[ 4616.984] Initializing built-in extension BIG-REQUESTS
[ 4616.984] Initializing built-in extension SYNC
[ 4616.984] Initializing built-in extension XKEYBOARD
[ 4616.984] Initializing built-in extension XC-MISC
[ 4616.985] Initializing built-in extension SECURITY
[ 4616.985] Initializing built-in extension XINERAMA
[ 4616.987] Initializing built-in extension XFIXES
[ 4616.990] Initializing built-in extension RENDER
[ 4616.993] Initializing built-in extension RANDR
[ 4616.995] Initializing built-in extension COMPOSITE
[ 4616.998] Initializing built-in extension DAMAGE
[ 4617.000] Initializing built-in extension MIT-SCREEN-SAVER
[ 4617.003] Initializing built-in extension DOUBLE-BUFFER
[ 4617.005] Initializing built-in extension RECORD
[ 4617.007] Initializing built-in extension DPMS
[ 4617.010] Initializing built-in extension X-Resource
[ 4617.012] Initializing built-in extension XVideo
[ 4617.015] Initializing built-in extension XVideo-MotionCompensation
[ 4617.017] Initializing built-in extension XFree86-VidModeExtension
[ 4617.019] Initializing built-in extension XFree86-DGA
[ 4617.021] Initializing built-in extension XFree86-DRI
[ 4617.023] Initializing built-in extension DRI2
[ 4617.023] (II) LoadModule: "glx"
[ 4617.024] (II) Loading /usr/lib/xorg/modules/extensions/libglx.so
[ 4617.024] (II) Module glx: vendor="X.Org Foundation"
[ 4617.024] compiled for 1.14.1, module version = 1.0.0
[ 4617.024] ABI class: X.Org Server Extension, version 7.0
[ 4617.024] (==) AIGLX enabled
[ 4617.026] Loading extension GLX
[ 4617.026] (==) Matched intel as autoconfigured driver 0
[ 4617.026] (==) Matched intel as autoconfigured driver 1
[ 4617.026] (==) Matched vesa as autoconfigured driver 2
[ 4617.026] (==) Matched modesetting as autoconfigured driver 3
[ 4617.026] (==) Matched fbdev as autoconfigured driver 4
[ 4617.026] (==) Assigned the driver to the xf86ConfigLayout
[ 4617.026] (II) LoadModule: "intel"
[ 4617.026] (II) Loading /usr/lib/xorg/modules/drivers/intel_drv.so
[ 4617.027] (II) Module intel: vendor="X.Org Foundation"
[ 4617.027] compiled for 1.14.1, module version = 2.21.8
[ 4617.027] Module class: X.Org Video Driver
[ 4617.027] ABI class: X.Org Video Driver, version 14.1
[ 4617.027] (II) LoadModule: "vesa"
[ 4617.027] (II) Loading /usr/lib/xorg/modules/drivers/vesa_drv.so
[ 4617.028] (II) Module vesa: vendor="X.Org Foundation"
[ 4617.028] compiled for 1.14.0, module version = 2.3.2
[ 4617.028] Module class: X.Org Video Driver
[ 4617.028] ABI class: X.Org Video Driver, version 14.1
[ 4617.028] (II) LoadModule: "modesetting"
[ 4617.029] (WW) Warning, couldn't open module modesetting
[ 4617.029] (II) UnloadModule: "modesetting"
[ 4617.029] (II) Unloading modesetting
[ 4617.029] (EE) Failed to load module "modesetting" (module does not exist, 0)
[ 4617.029] (II) LoadModule: "fbdev"
[ 4617.029] (WW) Warning, couldn't open module fbdev
[ 4617.029] (II) UnloadModule: "fbdev"
[ 4617.030] (II) Unloading fbdev
[ 4617.030] (EE) Failed to load module "fbdev" (module does not exist, 0)
[ 4617.030] (II) intel: Driver for Intel Integrated Graphics Chipsets: i810,
i810-dc100, i810e, i815, i830M, 845G, 854, 852GM/855GM, 865G, 915G,
E7221 (i915), 915GM, 945G, 945GM, 945GME, Pineview GM, Pineview G,
965G, G35, 965Q, 946GZ, 965GM, 965GME/GLE, G33, Q35, Q33, GM45,
4 Series, G45/G43, Q45/Q43, G41, B43, B43, Clarkdale, Arrandale,
Sandybridge Desktop (GT1), Sandybridge Desktop (GT2),
Sandybridge Desktop (GT2+), Sandybridge Mobile (GT1),
Sandybridge Mobile (GT2), Sandybridge Mobile (GT2+),
Sandybridge Server, Ivybridge Mobile (GT1), Ivybridge Mobile (GT2),
Ivybridge Desktop (GT1), Ivybridge Desktop (GT2), Ivybridge Server,
Ivybridge Server (GT2), Haswell Desktop (GT1), Haswell Desktop (GT2),
Haswell Desktop (GT3), Haswell Mobile (GT1), Haswell Mobile (GT2),
Haswell Mobile (GT3), Haswell Server (GT1), Haswell Server (GT2),
Haswell Server (GT3), Haswell (GT1), Haswell (GT2), Haswell (GT3),
Haswell (GT1), Haswell (GT2), Haswell (GT3),
Haswell SDV Desktop (GT1), Haswell SDV Desktop (GT2),
Haswell SDV Desktop (GT3), Haswell SDV Mobile (GT1),
Haswell SDV Mobile (GT2), Haswell SDV Mobile (GT3),
Haswell SDV Server (GT1), Haswell SDV Server (GT2),
Haswell SDV Server (GT3), Haswell SDV (GT1), Haswell SDV (GT2),
Haswell SDV (GT3), Haswell SDV (GT1), Haswell SDV (GT2),
Haswell SDV (GT3), Haswell ULT Desktop (GT1),
Haswell ULT Desktop (GT2), Haswell ULT Desktop (GT3),
Haswell ULT Mobile (GT1), Haswell ULT Mobile (GT2),
Haswell ULT Mobile (GT3), Haswell ULT Server (GT1),
Haswell ULT Server (GT2), Haswell ULT Server (GT3),
Haswell ULT (GT1), Haswell ULT (GT2), Haswell ULT (GT3),
Haswell ULT (GT1), Haswell ULT (GT2), Haswell ULT (GT3),
Haswell CRW Desktop (GT1), Haswell CRW Desktop (GT2),
Haswell CRW Desktop (GT3), Haswell CRW Mobile (GT1),
Haswell CRW Mobile (GT2), Haswell CRW Mobile (GT3),
Haswell CRW Server (GT1), Haswell CRW Server (GT2),
Haswell CRW Server (GT3), Haswell CRW (GT1), Haswell CRW (GT2),
Haswell CRW (GT3), Haswell CRW (GT1), Haswell CRW (GT2),
Haswell CRW (GT3), ValleyView PO board
[ 4617.032] (II) VESA: driver for VESA chipsets: vesa
[ 4617.032] (++) using VT number 1
[ 4617.033] (WW) Falling back to old probe method for vesa
[ 4617.033] (II) intel(0): Creating default Display subsection in Screen section
"Default Screen Section" for depth/fbbpp 24/32
[ 4617.034] (==) intel(0): Depth 24, (--) framebuffer bpp 32
[ 4617.034] (==) intel(0): RGB weight 888
[ 4617.034] (==) intel(0): Default visual is TrueColor
[ 4617.034] (--) intel(0): Integrated Graphics Chipset: Intel(R) 945GME
[ 4617.034] (**) intel(0): Relaxed fencing disabled
[ 4617.034] (**) intel(0): Wait on SwapBuffers? enabled
[ 4617.034] (**) intel(0): Triple buffering? enabled
[ 4617.034] (**) intel(0): Framebuffer tiled
[ 4617.034] (**) intel(0): Pixmaps tiled
[ 4617.034] (**) intel(0): 3D buffers tiled
[ 4617.034] (**) intel(0): SwapBuffers wait enabled
[ 4617.034] (==) intel(0): video overlay key set to 0x101fe
[ 4617.034] (II) intel(0): Output LVDS1 has no monitor section
[ 4617.035] (--) intel(0): found backlight control interface /sys/class/backlight/eeepc
[ 4617.066] (II) intel(0): Output VGA1 has no monitor section
[ 4617.067] (II) intel(0): EDID for output LVDS1
[ 4617.067] (II) intel(0): Not using default mode "320x240" (doublescan mode not supported)
[ 4617.067] (II) intel(0): Not using default mode "400x300" (doublescan mode not supported)
[ 4617.067] (II) intel(0): Not using default mode "400x300" (doublescan mode not supported)
[ 4617.068] (II) intel(0): Not using default mode "512x384" (doublescan mode not supported)
[ 4617.068] (II) intel(0): Not using default mode "640x480" (doublescan mode not supported)
[ 4617.068] (II) intel(0): Not using default mode "640x512" (doublescan mode not supported)
[ 4617.068] (II) intel(0): Not using default mode "800x600" (doublescan mode not supported)
[ 4617.068] (II) intel(0): Not using default mode "700x525" (doublescan mode not supported)
[ 4617.068] (II) intel(0): Printing probed modes for output LVDS1
[ 4617.068] (II) intel(0): Modeline "1024x600"x60.0 45.00 1024 1077 1112 1200 600 604 609 625 -hsync -vsync (37.5 kHz P)
[ 4617.068] (II) intel(0): Modeline "800x600"x60.3 40.00 800 840 968 1056 600 601 605 628 +hsync +vsync (37.9 kHz d)
[ 4617.068] (II) intel(0): Modeline "800x600"x56.2 36.00 800 824 896 1024 600 601 603 625 +hsync +vsync (35.2 kHz d)
[ 4617.068] (II) intel(0): Modeline "640x480"x59.9 25.18 640 656 752 800 480 490 492 525 -hsync -vsync (31.5 kHz d)
[ 4617.100] (II) intel(0): EDID for output VGA1
[ 4617.100] (II) intel(0): Output LVDS1 connected
[ 4617.100] (II) intel(0): Output VGA1 disconnected
[ 4617.100] (II) intel(0): Using exact sizes for initial modes
[ 4617.100] (II) intel(0): Output LVDS1 using initial mode 1024x600
[ 4617.100] (II) intel(0): Using default gamma of (1.0, 1.0, 1.0) unless otherwise stated.
[ 4617.100] (II) intel(0): Kernel page flipping support detected, enabling
[ 4617.100] (==) intel(0): DPI set to (96, 96)
[ 4617.100] (II) Loading sub module "fb"
[ 4617.100] (II) LoadModule: "fb"
[ 4617.101] (II) Loading /usr/lib/xorg/modules/libfb.so
[ 4617.102] (II) Module fb: vendor="X.Org Foundation"
[ 4617.103] compiled for 1.14.1, module version = 1.0.0
[ 4617.103] ABI class: X.Org ANSI C Emulation, version 0.4
[ 4617.103] (II) Loading sub module "dri2"
[ 4617.103] (II) LoadModule: "dri2"
[ 4617.103] (II) Module "dri2" already built-in
[ 4617.103] (II) UnloadModule: "vesa"
[ 4617.103] (II) Unloading vesa
[ 4617.103] (==) Depth 24 pixmap format is 32 bpp
[ 4617.104] (II) intel(0): [DRI2] Setup complete
[ 4617.104] (II) intel(0): [DRI2] DRI driver: i915
[ 4617.104] (II) intel(0): Allocated new frame buffer 1024x600 stride 4096, tiled
[ 4617.104] (II) UXA(0): Driver registered support for the following operations:
[ 4617.104] (II) solid
[ 4617.104] (II) copy
[ 4617.104] (II) composite (RENDER acceleration)
[ 4617.104] (II) put_image
[ 4617.105] (II) get_image
[ 4617.105] (==) intel(0): Backing store disabled
[ 4617.105] (==) intel(0): Silken mouse enabled
[ 4617.105] (II) intel(0): Initializing HW Cursor
[ 4617.105] (II) intel(0): RandR 1.2 enabled, ignore the following RandR disabled message.
[ 4617.113] (==) intel(0): DPMS enabled
[ 4617.113] (==) intel(0): Intel XvMC decoder disabled
[ 4617.113] (II) intel(0): Set up textured video
[ 4617.113] (II) intel(0): Set up overlay video
[ 4617.113] (II) intel(0): direct rendering: DRI2 Enabled
[ 4617.113] (==) intel(0): hotplug detection: "enabled"
[ 4617.123] (--) RandR disabled
[ 4617.160] (II) AIGLX: enabled GLX_MESA_copy_sub_buffer
[ 4617.160] (II) AIGLX: enabled GLX_INTEL_swap_event
[ 4617.160] (II) AIGLX: enabled GLX_ARB_create_context
[ 4617.160] (II) AIGLX: enabled GLX_ARB_create_context_profile
[ 4617.160] (II) AIGLX: enabled GLX_EXT_create_context_es2_profile
[ 4617.160] (II) AIGLX: enabled GLX_SGI_swap_control and GLX_MESA_swap_control
[ 4617.160] (II) AIGLX: GLX_EXT_texture_from_pixmap backed by buffer objects
[ 4617.160] (II) AIGLX: Loaded and initialized i915
[ 4617.160] (II) GLX: Initialized DRI2 GL provider for screen 0
[ 4617.162] (II) intel(0): Setting screen physical size to 270 x 158
[ 4617.278] (II) config/udev: Adding input device Power Button (/dev/input/event4)
[ 4617.278] (**) Power Button: Applying InputClass "evdev keyboard catchall"
[ 4617.278] (II) LoadModule: "evdev"
[ 4617.278] (II) Loading /usr/lib/xorg/modules/input/evdev_drv.so
[ 4617.279] (II) Module evdev: vendor="X.Org Foundation"
[ 4617.279] compiled for 1.14.0, module version = 2.8.0
[ 4617.279] Module class: X.Org XInput Driver
[ 4617.279] ABI class: X.Org XInput driver, version 19.1
[ 4617.279] (II) Using input driver 'evdev' for 'Power Button'
[ 4617.279] (**) Power Button: always reports core events
[ 4617.279] (**) evdev: Power Button: Device: "/dev/input/event4"
[ 4617.279] (--) evdev: Power Button: Vendor 0 Product 0x1
[ 4617.279] (--) evdev: Power Button: Found keys
[ 4617.279] (II) evdev: Power Button: Configuring as keyboard
[ 4617.279] (**) Option "config_info" "udev:/sys/devices/LNXSYSTM:00/LNXPWRBN:00/input/input4/event4"
[ 4617.279] (II) XINPUT: Adding extended input device "Power Button" (type: KEYBOARD, id 6)
[ 4617.279] (**) Option "xkb_rules" "evdev"
[ 4617.280] (**) Option "xkb_model" "evdev"
[ 4617.280] (**) Option "xkb_layout" "us"
[ 4617.363] (II) config/udev: Adding input device Video Bus (/dev/input/event7)
[ 4617.363] (**) Video Bus: Applying InputClass "evdev keyboard catchall"
[ 4617.363] (II) Using input driver 'evdev' for 'Video Bus'
[ 4617.363] (**) Video Bus: always reports core events
[ 4617.363] (**) evdev: Video Bus: Device: "/dev/input/event7"
[ 4617.363] (--) evdev: Video Bus: Vendor 0 Product 0x6
[ 4617.364] (--) evdev: Video Bus: Found keys
[ 4617.364] (II) evdev: Video Bus: Configuring as keyboard
[ 4617.364] (**) Option "config_info" "udev:/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A08:00/LNXVIDEO:00/input/input7/event7"
[ 4617.364] (II) XINPUT: Adding extended input device "Video Bus" (type: KEYBOARD, id 7)
[ 4617.364] (**) Option "xkb_rules" "evdev"
[ 4617.364] (**) Option "xkb_model" "evdev"
[ 4617.364] (**) Option "xkb_layout" "us"
[ 4617.365] (II) config/udev: Adding input device Power Button (/dev/input/event3)
[ 4617.365] (**) Power Button: Applying InputClass "evdev keyboard catchall"
[ 4617.365] (II) Using input driver 'evdev' for 'Power Button'
[ 4617.366] (**) Power Button: always reports core events
[ 4617.366] (**) evdev: Power Button: Device: "/dev/input/event3"
[ 4617.366] (--) evdev: Power Button: Vendor 0 Product 0x1
[ 4617.366] (--) evdev: Power Button: Found keys
[ 4617.366] (II) evdev: Power Button: Configuring as keyboard
[ 4617.366] (**) Option "config_info" "udev:/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0C:00/input/input3/event3"
[ 4617.366] (II) XINPUT: Adding extended input device "Power Button" (type: KEYBOARD, id 8)
[ 4617.366] (**) Option "xkb_rules" "evdev"
[ 4617.366] (**) Option "xkb_model" "evdev"
[ 4617.366] (**) Option "xkb_layout" "us"
[ 4617.368] (II) config/udev: Adding input device Lid Switch (/dev/input/event1)
[ 4617.368] (II) No input driver specified, ignoring this device.
[ 4617.368] (II) This device may have been added with another device file.
[ 4617.369] (II) config/udev: Adding input device Sleep Button (/dev/input/event2)
[ 4617.369] (**) Sleep Button: Applying InputClass "evdev keyboard catchall"
[ 4617.369] (II) Using input driver 'evdev' for 'Sleep Button'
[ 4617.369] (**) Sleep Button: always reports core events
[ 4617.369] (**) evdev: Sleep Button: Device: "/dev/input/event2"
[ 4617.369] (--) evdev: Sleep Button: Vendor 0 Product 0x3
[ 4617.369] (--) evdev: Sleep Button: Found keys
[ 4617.369] (II) evdev: Sleep Button: Configuring as keyboard
[ 4617.369] (**) Option "config_info" "udev:/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0C0E:00/input/input2/event2"
[ 4617.369] (II) XINPUT: Adding extended input device "Sleep Button" (type: KEYBOARD, id 9)
[ 4617.369] (**) Option "xkb_rules" "evdev"
[ 4617.369] (**) Option "xkb_model" "evdev"
[ 4617.369] (**) Option "xkb_layout" "us"
[ 4617.370] (II) config/udev: Adding drm device (/dev/dri/card0)
[ 4617.371] (II) config/udev: Adding input device HDA Intel Mic (/dev/input/event8)
[ 4617.372] (II) No input driver specified, ignoring this device.
[ 4617.372] (II) This device may have been added with another device file.
[ 4617.372] (II) config/udev: Adding input device HDA Intel Headphone (/dev/input/event9)
[ 4617.372] (II) No input driver specified, ignoring this device.
[ 4617.372] (II) This device may have been added with another device file.
[ 4617.373] (II) config/udev: Adding input device Asus EeePC extra buttons (/dev/input/event5)
[ 4617.373] (**) Asus EeePC extra buttons: Applying InputClass "evdev keyboard catchall"
[ 4617.373] (II) Using input driver 'evdev' for 'Asus EeePC extra buttons'
[ 4617.373] (**) Asus EeePC extra buttons: always reports core events
[ 4617.373] (**) evdev: Asus EeePC extra buttons: Device: "/dev/input/event5"
[ 4617.374] (--) evdev: Asus EeePC extra buttons: Vendor 0 Product 0
[ 4617.374] (--) evdev: Asus EeePC extra buttons: Found keys
[ 4617.374] (II) evdev: Asus EeePC extra buttons: Configuring as keyboard
[ 4617.374] (**) Option "config_info" "udev:/sys/devices/platform/eeepc/input/input5/event5"
[ 4617.374] (II) XINPUT: Adding extended input device "Asus EeePC extra buttons" (type: KEYBOARD, id 10)
[ 4617.374] (**) Option "xkb_rules" "evdev"
[ 4617.374] (**) Option "xkb_model" "evdev"
[ 4617.374] (**) Option "xkb_layout" "us"
[ 4617.375] (II) config/udev: Adding input device AT Translated Set 2 keyboard (/dev/input/event0)
[ 4617.375] (**) AT Translated Set 2 keyboard: Applying InputClass "evdev keyboard catchall"
[ 4617.376] (II) Using input driver 'evdev' for 'AT Translated Set 2 keyboard'
[ 4617.376] (**) AT Translated Set 2 keyboard: always reports core events
[ 4617.376] (**) evdev: AT Translated Set 2 keyboard: Device: "/dev/input/event0"
[ 4617.376] (--) evdev: AT Translated Set 2 keyboard: Vendor 0x1 Product 0x1
[ 4617.376] (--) evdev: AT Translated Set 2 keyboard: Found keys
[ 4617.376] (II) evdev: AT Translated Set 2 keyboard: Configuring as keyboard
[ 4617.376] (**) Option "config_info" "udev:/sys/devices/platform/i8042/serio0/input/input0/event0"
[ 4617.376] (II) XINPUT: Adding extended input device "AT Translated Set 2 keyboard" (type: KEYBOARD, id 11)
[ 4617.376] (**) Option "xkb_rules" "evdev"
[ 4617.376] (**) Option "xkb_model" "evdev"
[ 4617.376] (**) Option "xkb_layout" "us"
[ 4617.378] (II) config/udev: Adding input device ETPS/2 Elantech Touchpad (/dev/input/event10)
[ 4617.378] (**) ETPS/2 Elantech Touchpad: Applying InputClass "evdev touchpad catchall"
[ 4617.378] (**) ETPS/2 Elantech Touchpad: Applying InputClass "touchpad catchall"
[ 4617.378] (**) ETPS/2 Elantech Touchpad: Applying InputClass "Default clickpad buttons"
[ 4617.378] (II) LoadModule: "synaptics"
[ 4617.378] (II) Loading /usr/lib/xorg/modules/input/synaptics_drv.so
[ 4617.379] (II) Module synaptics: vendor="X.Org Foundation"
[ 4617.379] compiled for 1.14.1, module version = 1.7.1
[ 4617.379] Module class: X.Org XInput Driver
[ 4617.379] ABI class: X.Org XInput driver, version 19.1
[ 4617.379] (II) Using input driver 'synaptics' for 'ETPS/2 Elantech Touchpad'
[ 4617.379] (**) ETPS/2 Elantech Touchpad: always reports core events
[ 4617.379] (**) Option "Device" "/dev/input/event10"
[ 4617.380] (--) synaptics: ETPS/2 Elantech Touchpad: x-axis range 32 - 544 (res 0)
[ 4617.380] (--) synaptics: ETPS/2 Elantech Touchpad: y-axis range 32 - 352 (res 0)
[ 4617.380] (II) synaptics: ETPS/2 Elantech Touchpad: device does not report pressure, will use touch data.
[ 4617.380] (II) synaptics: ETPS/2 Elantech Touchpad: device does not report finger width.
[ 4617.380] (--) synaptics: ETPS/2 Elantech Touchpad: buttons: left right double triple
[ 4617.380] (--) synaptics: ETPS/2 Elantech Touchpad: Vendor 0x2 Product 0xe
[ 4617.380] (--) synaptics: ETPS/2 Elantech Touchpad: invalid pressure range. defaulting to 0 - 255
[ 4617.380] (--) synaptics: ETPS/2 Elantech Touchpad: invalid finger width range. defaulting to 0 - 15
[ 4617.380] (**) Option "TapButton1" "1"
[ 4617.380] (**) Option "TapButton2" "2"
[ 4617.380] (**) Option "TapButton3" "3"
[ 4617.381] (--) synaptics: ETPS/2 Elantech Touchpad: touchpad found
[ 4617.381] (**) ETPS/2 Elantech Touchpad: always reports core events
[ 4617.383] (**) Option "config_info" "udev:/sys/devices/platform/i8042/serio1/input/input10/event10"
[ 4617.383] (II) XINPUT: Adding extended input device "ETPS/2 Elantech Touchpad" (type: TOUCHPAD, id 12)
[ 4617.383] (**) synaptics: ETPS/2 Elantech Touchpad: (accel) MinSpeed is now constant deceleration 2.5
[ 4617.383] (**) synaptics: ETPS/2 Elantech Touchpad: (accel) MaxSpeed is now 1.75
[ 4617.383] (**) synaptics: ETPS/2 Elantech Touchpad: (accel) AccelFactor is now 0.332
[ 4617.384] (**) ETPS/2 Elantech Touchpad: (accel) keeping acceleration scheme 1
[ 4617.384] (**) ETPS/2 Elantech Touchpad: (accel) acceleration profile 1
[ 4617.384] (**) ETPS/2 Elantech Touchpad: (accel) acceleration factor: 2.000
[ 4617.384] (**) ETPS/2 Elantech Touchpad: (accel) acceleration threshold: 4
[ 4617.384] (--) synaptics: ETPS/2 Elantech Touchpad: touchpad found
[ 4617.385] (II) config/udev: Adding input device ETPS/2 Elantech Touchpad (/dev/input/mouse0)
[ 4617.385] (**) ETPS/2 Elantech Touchpad: Ignoring device from InputClass "touchpad ignore duplicates"
[ 4617.386] (II) config/udev: Adding input device PC Speaker (/dev/input/event6)
[ 4617.386] (II) No input driver specified, ignoring this device.
[ 4617.386] (II) This device may have been added with another device file.
I've tried looking for this problem elsewhere as it feels like such a newbie problem to have, but I have had difficulty. There are two errors in this log, I think, but they didn't mean much to me... Any help for a linux newbie? Thanks!
EDIT: Solved; as pointed out below, I needed a window manager for a non-root user to use.
Last edited by DJMankiewicz (2013-06-05 07:30:06)

Well, soon you'll have to try out one of the more minimal options, in which you don't use any desktop environment but instead you install your own window manager (openbox, dwm, i3, etc) and use small, dedicated programs. Given your extreme space restrictions, I recommend going that route! But, take your time because that requires a bit of learning: you need to figure out which parts of a desktop environment you really need, then you need to learn the proper names for them so that you can search for information, then you need to start fiddling with configurations, etc. Better first to make sure your first Arch Linux installation is up and running properly and to learn a bit about the system before entering that downward spiral.

[SOLVED]Xorg won't work for my non root user

I installed Arch Linux 2009.08 x86_64 Core inside Sun VirtualBox 3.0.8 and got up to the part of the Beginners' Guide that tells me to test X and it can never work for my non root user. Funny thing is, I tried running it as root and it worked even though my root user has no ~/.xinitrc file. Running startx or xinitrc as my non root user I get a small (maybe 400x600) white terminal but can't use my mouse or keyboard.
After looking over the guide and doing a step I forgot and adding in all of the extra stuff the guide says might help I can use my mouse and keyboard in my non root users' small white terminal but X still won't start properly with xterm even though I put 'exec exterm' in my non root users' ~/.xinitrc file. Please help. Thanks for any help guys.
Last edited by keiichi (2009-10-23 12:34:50)

schuay wrote:
keiichi wrote:After looking over the guide and doing a step I forgot and adding in all of the extra stuff the guide says might help I can use my mouse and keyboard in my non root users' small white terminal....
I don't get it .. this sounds like xterm is starting up successfully (xterm is a small white terminal). Easiest way to get X up and running (imo) is
sudo pacman -S gnome gdm xorg xf86-input-evdev
sudo /etc/rc.d/hal start
sudo /etc/rc.d/gdm start
I didn't know that's what xterm was, thanks for telling me. Noob mistake.

NetworkManager applet doesn't prompt for VPN secret for non-root user

I'm using NetworkManager in GNOME DE. When logged in as non-root user, I'm unable to connect to a vpnc profile.
* As non-root, I am able to add/remove/alter/connect to WiFi network profiles with no trouble.
* As non-root, I am also able to add/remove/alter vpnc profiles.
* However, the VPN group key and VPN user password do not appear to store properly when adding/editing the profile as non-root. I can enter them, but when I bring the dialog back up, they are always blank. Even so, I can see an entry for vpnc in the Gnome keyring.
* When I slide the on/off switch to try to connect with the vpn profile, there is no prompt for the VPN group key or password. The switch just slides back to Off immediately and I can see the text 'authentication required' flash briefly where it shows the connection status. After that flashes, the connection status is back to 'Not connected'. No error message displays.
* If I sign in as root, there are no problems. The VPN 'secrets' will save properly in the dialog, and also if I leave them blank, I'm prompted for them when I activate the connection.
* Creating the connection as 'root' is not an option, as this doesn't appear in profile list when signing on as non-root.
Any ideas on where to look or what to check? As mentioned above, non-root can maintain WiFi connections through NetworkManager just fine, so the problem appears localized to VPN 'secrets'. Also other applications (i.e. Evolution) have no trouble in dealing with authentication.
I do have polkit installed:
extra/polkit 0.110-2 [installed]
Application development toolkit for controlling system-wide privileges
extra/polkit-kde 0.99.0-2
Daemon providing a polkit authentication UI for KDE
extra/polkit-qt 0.103.0-2
A library that allows developers to access PolicyKit API with a nice Qt-style API
community/polkit-gnome 0.105-1 [installed]
PolicyKit integration for the GNOME desktop

Update/more information on this...
My typical/preferred setup for my VPNs is to save the VPN group key, but to be prompted for my VPN user password on each connect. So, this is how I was trying to setup in the applet. Interestingly, I have found that if I save BOTH of the 'secrets' to the keyring, then I can connect!
The behavior is still as above in the dialog -- both secrets are blank if I edit the connection, although they are present in the Gnome keyring. As long as they are BOTH there, I can connect fine. But, if I have either of them set to 'Always Ask', then I am not prompted for them and the connection fails.
Although I can work with this, I would certainly still like to figure out what is going on and fix it, as it does bother me that it works that way:
* Why can't the dialog redisplay my secrets when I edit a connection as non-root?
* Why doesn't Always Ask work to prompt me for secrets when running as non-root?
Any ideas? I've used the Gnome/NetworkManager/vpnc combination on other desktops (this is my first Arch), and I have never seen anything like this.

[SOLVED] Launching systemd service as non-root user

I need to launch a systemd service as a non-root user. I've looked at this but I'm fairly confused. I don't have xorg or any desktop environment installed (this is a remote server I SSH into) but when I run
systemctl --user status
I get
Failed to get D-Bus connection: Unable to autolaunch a dbus-daemon without a $DISPLAY for X11
What am I doing wrong?
Last edited by gsingh93 (2013-12-01 07:29:29)

I was going in the wrong direction. All I had to do was add 'User=username' and 'Group=groupname' in the [Service] section.

Mounting usb devices as non-root user ??

How can a non-root user mount a usb flash device?
As root, the device is mounted as:
mount -F pcfs /dev/dsk/c1tod0s2:c /mnt
The vfstab entry for this is as follows:
/dev/dsk/c1t0d0s2:c /dev/rdsk/c1t0d0s2 /flash pcfs 2 no -
This is running Solaris 8 on a SunBlade150

Hello.
I had the same problem.
If you do not have root rights on the computer the answer is: You cannot mount the device.
I had root access and I wrote a C program that (un-)mounted all possible device files (the "s2" devices as well as the "s2:c" devices because some flash devices come without partition table).
I chowned the file to root and set the "set effective user ID" bit in the file's permissions using chmod after logging in as root - so any user can start the program.
I think this is the most flexible variant because USB devices sometimes are assigned other device names.
Martin

Running BIND (DNS) as a non-root user

Similar Messages

Maybe you are looking for