You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@guacamole.apache.org by Vieri <re...@yahoo.com.INVALID> on 2020/01/20 15:26:30 UTC
guacamole server and freerdp 2
Hi,
The latest guacamole-server on GIT seems to support FreeRDP 2.
I have FreeRDP 2.0.0 RC4.
When I connect to an old Windows Server 2003 I get this in the guacd log:
guacd[4322]: Creating new client for protocol "rdp"
guacd[4322]: Connection ID is "$48b9cf7f-a69f-4ae1-991f-bc48aa60cf27"
guacd[4610]: Processing instruction: size
guacd[4610]: Processing instruction: audio
guacd[4610]: Processing instruction: video
guacd[4610]: Processing instruction: image
guacd[4610]: Processing instruction: timezone
guacd[4610]: Parameter "console" omitted. Using default value of 0.
guacd[4610]: Parameter "console-audio" omitted. Using default value of 0.
guacd[4610]: Parameter "ignore-cert" omitted. Using default value of 0.
guacd[4610]: Parameter "disable-auth" omitted. Using default value of 0.
guacd[4610]: No security mode specified. Defaulting to security mode negotiation with server.
guacd[4610]: Parameter "port" omitted. Using default value of 3389.
guacd[4610]: User resolution is 1280x686 at 96 DPI
guacd[4610]: Parameter "dpi" omitted. Using default value of 96.
guacd[4610]: Using resolution of 1280x686 at 96 DPI
guacd[4610]: Parameter "read-only" omitted. Using default value of 0.
guacd[4610]: Parameter "enable-wallpaper" omitted. Using default value of 0.
guacd[4610]: Parameter "enable-theming" omitted. Using default value of 0.
guacd[4610]: Parameter "enable-font-smoothing" omitted. Using default value of 0.
guacd[4610]: Parameter "enable-full-window-drag" omitted. Using default value of 0.
guacd[4610]: Parameter "enable-desktop-composition" omitted. Using default value of 0.
guacd[4610]: Parameter "enable-menu-animations" omitted. Using default value of 0.
guacd[4610]: Parameter "disable-bitmap-caching" omitted. Using default value of 0.
guacd[4610]: Parameter "disable-offscreen-caching" omitted. Using default value of 0.
guacd[4610]: Parameter "disable-glyph-caching" omitted. Using default value of 0.
guacd[4610]: Parameter "color-depth" omitted. Using default value of 16.
guacd[4610]: Parameter "disable-audio" omitted. Using default value of 0.
guacd[4610]: Parameter "enable-drive" omitted. Using default value of 0.
guacd[4610]: Parameter "drive-name" omitted. Using default value of "Guacamole Filesystem".
guacd[4610]: Parameter "drive-path" omitted. Using default value of "".
guacd[4610]: Parameter "create-drive-path" omitted. Using default value of 0.
guacd[4610]: Parameter "timezone" omitted. Using default value of "Europe/Paris".
guacd[4610]: Parameter "enable-sftp" omitted. Using default value of 0.
guacd[4610]: Parameter "sftp-hostname" omitted. Using default value of "vm-ts1".
guacd[4610]: Parameter "sftp-port" omitted. Using default value of "22".
guacd[4610]: Parameter "sftp-username" omitted. Using default value of "".
guacd[4610]: Parameter "sftp-password" omitted. Using default value of "".
guacd[4610]: Parameter "sftp-passphrase" omitted. Using default value of "".
guacd[4610]: Parameter "sftp-root-directory" omitted. Using default value of "/".
guacd[4610]: Parameter "sftp-server-alive-interval" omitted. Using default value of 0.
guacd[4610]: Parameter "recording-name" omitted. Using default value of "recording".
guacd[4610]: Parameter "recording-exclude-output" omitted. Using default value of 0.
guacd[4610]: Parameter "recording-exclude-mouse" omitted. Using default value of 0.
guacd[4610]: Parameter "recording-include-keys" omitted. Using default value of 0.
guacd[4610]: Parameter "create-recording-path" omitted. Using default value of 0.
guacd[4610]: Resize method: none
guacd[4610]: Parameter "enable-audio-input" omitted. Using default value of 0.
guacd[4610]: Parameter "gateway-port" omitted. Using default value of 443.
guacd[4610]: Parameter "disable-copy" omitted. Using default value of 0.
guacd[4610]: Parameter "disable-paste" omitted. Using default value of 0.
guacd[4610]: User "@c738c637-6039-43fe-98cf-4166d5cd80f1" joined connection "$48b9cf7f-a69f-4ae1-991f-bc48aa60cf27" (1 users now present)
guacd[4610]: Client is using protocol version "VERSION_1_1_0"
guacd[4610]: Loading keymap "base"
guacd[4610]: Loading keymap "fr-fr-qwerty"
guacd[4610]: Support for CLIPRDR (clipboard redirection) registered. Awaiting channel connection.
guacd[4610]: Support for static channel "rdpdr" loaded.
guacd[4610]: Support for static channel "rdpsnd" loaded.
guacd[4610]: Local framebuffer format PIXEL_FORMAT_BGRX32
guacd[4610]: Remote framebuffer format PIXEL_FORMAT_RGB16
guacd[4610]: Error: SSL_NOT_ALLOWED_BY_SERVER
guacd[4610]: expecting BB_ENCRYPTED_DATA_BLOB blob
guacd[4610]: transport_check_fds: transport->ReceiveCallback() - -1
guacd[4610]: freerdp_set_last_error ERRCONNECT_CONNECT_TRANSPORT_FAILED [0x0002000D]
guacd[4610]: Error: SSL_NOT_ALLOWED_BY_SERVER
guacd[4610]: expecting BB_ENCRYPTED_DATA_BLOB blob
guacd[4610]: transport_check_fds: transport->ReceiveCallback() - -1
guacd[4610]: freerdp_set_last_error ERRCONNECT_CONNECT_TRANSPORT_FAILED [0x0002000D]
guacd[4610]: freerdp_post_connect failed
guacd[4610]: SVC "rdpdr" disconnected.
guacd[4610]: SVC "rdpsnd" disconnected.
guacd[4610]: Error connecting to RDP server
guacd[4610]: User "@c738c637-6039-43fe-98cf-4166d5cd80f1" disconnected (0 users remain)
guacd[4610]: Last user of connection "$48b9cf7f-a69f-4ae1-991f-bc48aa60cf27" disconnected
guacd[4610]: Requesting termination of client...
guacd[4610]: Client terminated successfully.
guacd[4322]: Connection "$48b9cf7f-a69f-4ae1-991f-bc48aa60cf27" removed.
If I connect to a more recent Windows Server I get this in the log:
guacd[4322]: Creating new client for protocol "rdp"
guacd[4322]: Connection ID is "$d7af635f-63fe-406a-ad70-59727b239594"
guacd[5730]: Processing instruction: size
guacd[5730]: Processing instruction: audio
guacd[5730]: Processing instruction: video
guacd[5730]: Processing instruction: image
guacd[5730]: Processing instruction: timezone
guacd[5730]: Parameter "console" omitted. Using default value of 0.
guacd[5730]: Parameter "console-audio" omitted. Using default value of 0.
guacd[5730]: Parameter "disable-auth" omitted. Using default value of 0.
guacd[5730]: Security mode: NLA
guacd[5730]: Parameter "port" omitted. Using default value of 3389.
guacd[5730]: User resolution is 1280x686 at 96 DPI
guacd[5730]: Parameter "dpi" omitted. Using default value of 96.
guacd[5730]: Using resolution of 1280x686 at 96 DPI
guacd[5730]: Parameter "read-only" omitted. Using default value of 0.
guacd[5730]: Parameter "enable-wallpaper" omitted. Using default value of 0.
guacd[5730]: Parameter "enable-theming" omitted. Using default value of 0.
guacd[5730]: Parameter "enable-font-smoothing" omitted. Using default value of 0.
guacd[5730]: Parameter "enable-full-window-drag" omitted. Using default value of 0.
guacd[5730]: Parameter "enable-desktop-composition" omitted. Using default value of 0.
guacd[5730]: Parameter "enable-menu-animations" omitted. Using default value of 0.
guacd[5730]: Parameter "disable-bitmap-caching" omitted. Using default value of 0.
guacd[5730]: Parameter "disable-offscreen-caching" omitted. Using default value of 0.
guacd[5730]: Parameter "disable-glyph-caching" omitted. Using default value of 0.
guacd[5730]: Parameter "disable-audio" omitted. Using default value of 0.
guacd[5730]: Parameter "enable-drive" omitted. Using default value of 0.
guacd[5730]: Parameter "drive-name" omitted. Using default value of "Guacamole Filesystem".
guacd[5730]: Parameter "drive-path" omitted. Using default value of "".
guacd[5730]: Parameter "create-drive-path" omitted. Using default value of 0.
guacd[5730]: Parameter "timezone" omitted. Using default value of "Europe/Paris".
guacd[5730]: Parameter "enable-sftp" omitted. Using default value of 0.
guacd[5730]: Parameter "sftp-hostname" omitted. Using default value of "10.10.1.50".
guacd[5730]: Parameter "sftp-port" omitted. Using default value of "22".
guacd[5730]: Parameter "sftp-username" omitted. Using default value of "myuser".
guacd[5730]: Parameter "sftp-password" omitted. Using default value of "".
guacd[5730]: Parameter "sftp-passphrase" omitted. Using default value of "".
guacd[5730]: Parameter "sftp-root-directory" omitted. Using default value of "/".
guacd[5730]: Parameter "sftp-server-alive-interval" omitted. Using default value of 0.
guacd[5730]: Parameter "recording-name" omitted. Using default value of "recording".
guacd[5730]: Parameter "recording-exclude-output" omitted. Using default value of 0.
guacd[5730]: Parameter "recording-exclude-mouse" omitted. Using default value of 0.
guacd[5730]: Parameter "recording-include-keys" omitted. Using default value of 0.
guacd[5730]: Parameter "create-recording-path" omitted. Using default value of 0.
guacd[5730]: Resize method: none
guacd[5730]: Parameter "enable-audio-input" omitted. Using default value of 0.
guacd[5730]: Parameter "gateway-port" omitted. Using default value of 443.
guacd[5730]: Parameter "disable-copy" omitted. Using default value of 0.
guacd[5730]: Parameter "disable-paste" omitted. Using default value of 0.
guacd[5730]: User "@186ce450-ad71-4f28-b695-2f4ffbd00dd9" joined connection "$d7af635f-63fe-406a-ad70-59727b239594" (1 users now present)
guacd[5730]: Client is using protocol version "VERSION_1_1_0"
guacd[5730]: Loading keymap "base"
guacd[5730]: Loading keymap "fr-fr-qwerty"
guacd[5730]: Support for CLIPRDR (clipboard redirection) registered. Awaiting channel connection.
guacd[5730]: Support for static channel "rdpdr" loaded.
guacd[5730]: Support for static channel "rdpsnd" loaded.
guacd[5730]: Local framebuffer format PIXEL_FORMAT_BGRX32
guacd[5730]: Remote framebuffer format PIXEL_FORMAT_BGR24
guacd[5730]: error creating directory '/dev/null/.config/freerdp'
guacd[5730]: certificate store initialization failed
guacd[5730]: freerdp_set_last_error ERRCONNECT_SECURITY_NEGO_CONNECT_FAILED [0x0002000C]
guacd[5730]: Error: protocol security negotiation or connection failure
guacd[5730]: SVC "rdpdr" disconnected.
guacd[5730]: SVC "rdpsnd" disconnected.
guacd[5730]: Error connecting to RDP server
guacd[5730]: User "@186ce450-ad71-4f28-b695-2f4ffbd00dd9" disconnected (0 users remain)
guacd[5730]: Last user of connection "$d7af635f-63fe-406a-ad70-59727b239594" disconnected
guacd[5730]: Requesting termination of client...
guacd[5730]: Client terminated successfully.
guacd[4322]: Connection "$d7af635f-63fe-406a-ad70-59727b239594" removed.
Why is it trying to create /dev/null/.config/freerdp?
What can I try in both RDP cases?
Vieri
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@guacamole.apache.org
For additional commands, e-mail: user-help@guacamole.apache.org
Re: guacamole server and freerdp 2
Posted by Vieri <re...@yahoo.com.INVALID>.
On Tuesday, January 21, 2020, 3:18:20 AM GMT+1, Mike Jumper <mj...@apache.org> wrote:
>
>> When I connect to an old Windows Server 2003
>
> Looks like they fixed it after 2.0.0-rc4 with https://github.com/FreeRDP/FreeRDP/pull/5104.
Fixed!
Thanks again!
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@guacamole.apache.org
For additional commands, e-mail: user-help@guacamole.apache.org
Re: guacamole server and freerdp 2
Posted by Mike Jumper <mj...@apache.org>.
On Mon, Jan 20, 2020 at 3:03 PM Mike Jumper <mj...@apache.org> wrote:
> On Mon, Jan 20, 2020 at 1:41 PM Vieri <re...@yahoo.com.invalid> wrote:
>
>> On Monday, January 20, 2020, 8:47:50 PM GMT+1, Mike Jumper <
>> mjumper@apache.org> wrote:
>> >>
>> >> When I connect to an old Windows Server 2003 I get this in the guacd
>> log:
>> >> ...
>> >> guacd[4610]: Error: SSL_NOT_ALLOWED_BY_SERVER
>> >> guacd[4610]: expecting BB_ENCRYPTED_DATA_BLOB blob
>> >> guacd[4610]: transport_check_fds: transport->ReceiveCallback() - -1
>> >> guacd[4610]: freerdp_set_last_error
>> ERRCONNECT_CONNECT_TRANSPORT_FAILED [0x0002000D]
>> >> guacd[4610]: Error: SSL_NOT_ALLOWED_BY_SERVER
>> >> guacd[4610]: expecting BB_ENCRYPTED_DATA_BLOB blob
>> >
>> > Part of the changes which added support for FreeRDP 2 also changed the
>> default security mode to "any" with the expectation that the correct
>> security should be able to be
>> > negotiated in all but rare cases. If things are now generally failing
>> for older versions of Windows, this may be a regression. I've opened a JIRA
>> issue to take a look:
>> >
>> > https://issues.apache.org/jira/browse/GUACAMOLE-932
>>
>> I explicitly set
>>
>> Security mode: RDP
>>
>> but I'm still getting connection issues. This time it's:
>>
>> guacd[10521]: expecting BB_ENCRYPTED_DATA_BLOB blob
>> guacd[10521]: transport_check_fds: transport->ReceiveCallback() - -1
>> guacd[10521]: freerdp_set_last_error ERRCONNECT_CONNECT_TRANSPORT_FAILED
>> [0x0002000D]
>> guacd[10521]: expecting BB_ENCRYPTED_DATA_BLOB blob
>> guacd[10521]: transport_check_fds: transport->ReceiveCallback() - -1
>> guacd[10521]: freerdp_set_last_error ERRCONNECT_CONNECT_TRANSPORT_FAILED
>> [0x0002000D]
>> guacd[10521]: freerdp_post_connect failed
>> guacd[10521]: SVC "rdpdr" disconnected.
>> guacd[10521]: SVC "rdpsnd" disconnected.
>> guacd[10521]: Error connecting to RDP server
>>
>
> I've managed to spin up a Windows Server 2003 R2 SP2 instance in EC2 and
> am not having any trouble connecting, even keeping the new default security
> mode negotiation (not explicitly selecting "rdp").
>
> What specific Linux distribution and FreeRDP package are you using?
> There's pretty wide variance in what each distribution provides as a
> FreeRDP 2.0.0 package.
>
Actually, this looks like a known issue with FreeRDP. I've found the
following:
https://github.com/FreeRDP/FreeRDP/issues/5127
Which is a duplicate of:
https://github.com/FreeRDP/FreeRDP/issues/5101
Looks like they fixed it after 2.0.0-rc4 with
https://github.com/FreeRDP/FreeRDP/pull/5104.
- Mike
Re: guacamole server and freerdp 2
Posted by Mike Jumper <mj...@apache.org>.
On Mon, Jan 20, 2020 at 1:41 PM Vieri <re...@yahoo.com.invalid> wrote:
> On Monday, January 20, 2020, 8:47:50 PM GMT+1, Mike Jumper <
> mjumper@apache.org> wrote:
> >>
> >> When I connect to an old Windows Server 2003 I get this in the guacd
> log:
> >> ...
> >> guacd[4610]: Error: SSL_NOT_ALLOWED_BY_SERVER
> >> guacd[4610]: expecting BB_ENCRYPTED_DATA_BLOB blob
> >> guacd[4610]: transport_check_fds: transport->ReceiveCallback() - -1
> >> guacd[4610]: freerdp_set_last_error ERRCONNECT_CONNECT_TRANSPORT_FAILED
> [0x0002000D]
> >> guacd[4610]: Error: SSL_NOT_ALLOWED_BY_SERVER
> >> guacd[4610]: expecting BB_ENCRYPTED_DATA_BLOB blob
> >
> > Part of the changes which added support for FreeRDP 2 also changed the
> default security mode to "any" with the expectation that the correct
> security should be able to be
> > negotiated in all but rare cases. If things are now generally failing
> for older versions of Windows, this may be a regression. I've opened a JIRA
> issue to take a look:
> >
> > https://issues.apache.org/jira/browse/GUACAMOLE-932
>
> I explicitly set
>
> Security mode: RDP
>
> but I'm still getting connection issues. This time it's:
>
> guacd[10521]: expecting BB_ENCRYPTED_DATA_BLOB blob
> guacd[10521]: transport_check_fds: transport->ReceiveCallback() - -1
> guacd[10521]: freerdp_set_last_error ERRCONNECT_CONNECT_TRANSPORT_FAILED
> [0x0002000D]
> guacd[10521]: expecting BB_ENCRYPTED_DATA_BLOB blob
> guacd[10521]: transport_check_fds: transport->ReceiveCallback() - -1
> guacd[10521]: freerdp_set_last_error ERRCONNECT_CONNECT_TRANSPORT_FAILED
> [0x0002000D]
> guacd[10521]: freerdp_post_connect failed
> guacd[10521]: SVC "rdpdr" disconnected.
> guacd[10521]: SVC "rdpsnd" disconnected.
> guacd[10521]: Error connecting to RDP server
>
I've managed to spin up a Windows Server 2003 R2 SP2 instance in EC2 and am
not having any trouble connecting, even keeping the new default security
mode negotiation (not explicitly selecting "rdp").
What specific Linux distribution and FreeRDP package are you using? There's
pretty wide variance in what each distribution provides as a FreeRDP 2.0.0
package.
- Mike
Re: guacamole server and freerdp 2
Posted by Vieri <re...@yahoo.com.INVALID>.
On Monday, January 20, 2020, 8:47:50 PM GMT+1, Mike Jumper <mj...@apache.org> wrote:
>>
>> When I connect to an old Windows Server 2003 I get this in the guacd log:
>> ...
>> guacd[4610]: Error: SSL_NOT_ALLOWED_BY_SERVER
>> guacd[4610]: expecting BB_ENCRYPTED_DATA_BLOB blob
>> guacd[4610]: transport_check_fds: transport->ReceiveCallback() - -1
>> guacd[4610]: freerdp_set_last_error ERRCONNECT_CONNECT_TRANSPORT_FAILED [0x0002000D]
>> guacd[4610]: Error: SSL_NOT_ALLOWED_BY_SERVER
>> guacd[4610]: expecting BB_ENCRYPTED_DATA_BLOB blob
>
> Part of the changes which added support for FreeRDP 2 also changed the default security mode to "any" with the expectation that the correct security should be able to be
> negotiated in all but rare cases. If things are now generally failing for older versions of Windows, this may be a regression. I've opened a JIRA issue to take a look:
>
> https://issues.apache.org/jira/browse/GUACAMOLE-932
I explicitly set
Security mode: RDP
but I'm still getting connection issues. This time it's:
guacd[10521]: expecting BB_ENCRYPTED_DATA_BLOB blob
guacd[10521]: transport_check_fds: transport->ReceiveCallback() - -1
guacd[10521]: freerdp_set_last_error ERRCONNECT_CONNECT_TRANSPORT_FAILED [0x0002000D]
guacd[10521]: expecting BB_ENCRYPTED_DATA_BLOB blob
guacd[10521]: transport_check_fds: transport->ReceiveCallback() - -1
guacd[10521]: freerdp_set_last_error ERRCONNECT_CONNECT_TRANSPORT_FAILED [0x0002000D]
guacd[10521]: freerdp_post_connect failed
guacd[10521]: SVC "rdpdr" disconnected.
guacd[10521]: SVC "rdpsnd" disconnected.
guacd[10521]: Error connecting to RDP server
Vieri
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@guacamole.apache.org
For additional commands, e-mail: user-help@guacamole.apache.org
Re: guacamole server and freerdp 2
Posted by Mike Jumper <mj...@apache.org>.
On Mon, Jan 20, 2020 at 7:26 AM Vieri <re...@yahoo.com.invalid> wrote:
> Hi,
>
> The latest guacamole-server on GIT seems to support FreeRDP 2.
>
> I have FreeRDP 2.0.0 RC4.
>
> When I connect to an old Windows Server 2003 I get this in the guacd log:
> ...
> guacd[4610]: Error: SSL_NOT_ALLOWED_BY_SERVER
> guacd[4610]: expecting BB_ENCRYPTED_DATA_BLOB blob
> guacd[4610]: transport_check_fds: transport->ReceiveCallback() - -1
> guacd[4610]: freerdp_set_last_error ERRCONNECT_CONNECT_TRANSPORT_FAILED
> [0x0002000D]
> guacd[4610]: Error: SSL_NOT_ALLOWED_BY_SERVER
> guacd[4610]: expecting BB_ENCRYPTED_DATA_BLOB blob
>
Part of the changes which added support for FreeRDP 2 also changed the
default security mode to "any" with the expectation that the correct
security should be able to be negotiated in all but rare cases. If things
are now generally failing for older versions of Windows, this may be a
regression. I've opened a JIRA issue to take a look:
https://issues.apache.org/jira/browse/GUACAMOLE-932
- Mike
Re: guacamole server and freerdp 2
Posted by Mike Jumper <mj...@apache.org>.
On Mon, Jan 20, 2020, 10:35 Mike Jumper <mj...@apache.org> wrote:
> On Mon, Jan 20, 2020, 07:26 Vieri <re...@yahoo.com.invalid> wrote:
>
>> Hi,
>>
>> The latest guacamole-server on GIT seems to support FreeRDP 2.
>>
>> I have FreeRDP 2.0.0 RC4.
>>
>> ...
>> guacd[5730]: error creating directory '/dev/null/.config/freerdp'
>> guacd[5730]: certificate store initialization failed
>> ...
>>
>> Why is it trying to create /dev/null/.config/freerdp?
>>
>
> FreeRDP 2 always tries to create a configuration directory in which to
> store accepted SSL certificates. It is a part of its initialization process
> which cannot be disabled, and it will refuse to attempt to connect if the
> directory creation fails.
>
> It looks like you have the guacd service user's home directory set to
> /dev/null, which is not a directory. You will need to instead set it to a
> directory which is writable by that user. Since the contents of that
> directory may affect the behavior of FreeRDP, the directory should also
> *not* be writable by other users.
>
By the way, having also seen something like this during testing of the
regression where things failed if HOME was unset, we recently added sanity
checks around the home directory which would log warnings from guacd if the
home directory could not be determined.
It looks like we should probably add additional sanity checks to verify
that the home directory is both writable and a directory, warning that
things will likely fail if not the case.
- Mike
Re: guacamole server and freerdp 2
Posted by Vieri <re...@yahoo.com.INVALID>.
On Monday, January 20, 2020, 7:35:57 PM GMT+1, Mike Jumper <mj...@apache.org> wrote:
>
>> The latest guacamole-server on GIT seems to support FreeRDP 2.
>>
>> I have FreeRDP 2.0.0 RC4.
>>
>> ...
>> guacd[5730]: error creating directory '/dev/null/.config/freerdp'
>> guacd[5730]: certificate store initialization failed
>> ...
>
> FreeRDP 2 always tries to create a configuration directory in which to store accepted SSL certificates. It is a part of its initialization process which cannot be disabled, and it will
> refuse to attempt to connect if the directory creation fails.
>
> It looks like you have the guacd service user's home directory set to /dev/null, which is not a directory. You will need to instead set it to a directory which is writable by that user.
> Since the contents of that directory may affect the behavior of FreeRDP, the directory should also *not* be writable by other users.
I changed the user's home dir, shell and permissions. It now works fine for NLA RDP on recent Windows Servers.
Thanks for making FreeRDP 2 work with Guacamole Server!
I'm still having issues with older Windows Server 2003 though (yeah, I know it's crazy to still have this lying around nowadays).
Vieri
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@guacamole.apache.org
For additional commands, e-mail: user-help@guacamole.apache.org
Re: guacamole server and freerdp 2
Posted by Mike Jumper <mj...@apache.org>.
On Mon, Jan 20, 2020, 07:26 Vieri <re...@yahoo.com.invalid> wrote:
> Hi,
>
> The latest guacamole-server on GIT seems to support FreeRDP 2.
>
> I have FreeRDP 2.0.0 RC4.
>
> ...
> guacd[5730]: error creating directory '/dev/null/.config/freerdp'
> guacd[5730]: certificate store initialization failed
> ...
>
> Why is it trying to create /dev/null/.config/freerdp?
>
FreeRDP 2 always tries to create a configuration directory in which to
store accepted SSL certificates. It is a part of its initialization process
which cannot be disabled, and it will refuse to attempt to connect if the
directory creation fails.
It looks like you have the guacd service user's home directory set to
/dev/null, which is not a directory. You will need to instead set it to a
directory which is writable by that user. Since the contents of that
directory may affect the behavior of FreeRDP, the directory should also
*not* be writable by other users.
- Mike