You are not logged in.
- Topics: Active | Unanswered
#1 2015-10-13 23:45:58
- nail
- Member
- Registered: 2015-09-30
- Posts: 24
[SOLVED(exec|firejail)] AceStreamEngine doesn't work under non-root?
Kernel version: original, grsec, zen, lts etc - doesn't matter!
Acestream-engine installed from AUR: https://aur.archlinux.org/packages/acestream-engine/
1) "sudo acestreamengine --client-console" starts and works good. But it's not safe.
2) With "acestreamengine --client-console" command i got errors and engine stopped:
[user@localhost ~]$ acestreamengine --client-console
2015-10-14 02:32:17,906|MainThread|acestream|error during startup
Traceback (most recent call last):
File "core.c", line 1146, in
File "core.c", line 48, in
File "core.c", line 26, in
File "/usr/share/acestream/lib/psutil-1.2.1-py2.7-linux-x86_64.egg/psutil/__init__.py", line 88, in <module>
File "/usr/share/acestream/lib/psutil-1.2.1-py2.7-linux-x86_64.egg/psutil/_pslinux.py", line 20, in <module>
File "/usr/share/acestream/lib/psutil-1.2.1-py2.7-linux-x86_64.egg/_psutil_linux.py", line 7, in <module>
File "/usr/share/acestream/lib/psutil-1.2.1-py2.7-linux-x86_64.egg/_psutil_linux.py", line 6, in __bootstrap__
ImportError: /home/user/.python-eggs/psutil-1.2.1-py2.7-linux-x86_64.egg-tmp/_psutil_linux.so: failed to map segment from shared objectWhat settings i have to change to start acestreamengine under non-root user ?
Last edited by nail (2015-10-17 22:48:40)
Notebook: ACER V3 771G INTEL Core i5 3230m + Intel HD 4000 + 1920x1080.
PC: AMD Phenom x6 1100T + ATI HD 4200 + 2560x1440.
Offline
#2 2015-10-14 19:53:29
- nail
- Member
- Registered: 2015-09-30
- Posts: 24
Re: [SOLVED(exec|firejail)] AceStreamEngine doesn't work under non-root?
Problem is solved by removing "noexec" from "/home" mount options )
Early fstab:
...
/dev/sda3 /home ext4 rw,nodev,nosuid,noexec,relatime,data=ordered 0 2
...Now:
...
/dev/sda3 /home ext4 rw,nodev,nosuid,relatime,data=ordered 0 2
...PS: it was my mistake. Because i forget that i have edited fstab after archlinux installation due to Security wiki-topic: https://wiki.archlinux.org/index.php/Se … Partitions
Last edited by nail (2015-10-14 19:56:26)
Notebook: ACER V3 771G INTEL Core i5 3230m + Intel HD 4000 + 1920x1080.
PC: AMD Phenom x6 1100T + ATI HD 4200 + 2560x1440.
Offline
#3 2015-10-17 21:23:21
- nail
- Member
- Registered: 2015-09-30
- Posts: 24
Re: [SOLVED(exec|firejail)] AceStreamEngine doesn't work under non-root?
If you don't want to switch off "noexec" mount option for "/home" - just use FIREJAIL with "--private" option:
firejail --private acestreamengine --client-gtk
or
firejail --private acestreamengine --client-console"--private" option will mount temporary "/home" to tmpfs. After closing acestreamengine temporary "/home" will be removed from TMPFS. And that's more secure! 
To watch acestreamengine use acestreamplayer(https://aur.archlinux.org/packages/acestream-player/):
firejail --private acestreamplayerPS: Thanks to author for best sandbox project!
https://aur.archlinux.org/packages/firejail/
https://wiki.archlinux.org/index.php/Firejail
https://github.com/netblue30/firejail
https://l3net.wordpress.com/projects/firejail/
Last edited by nail (2015-10-17 21:23:41)
Notebook: ACER V3 771G INTEL Core i5 3230m + Intel HD 4000 + 1920x1080.
PC: AMD Phenom x6 1100T + ATI HD 4200 + 2560x1440.
Offline