Created attachment 315239 [details] emerge --info I test this on my hardened workstation with gnome. I got the follow log: request WRITE, pid 3931, ppid 3930, prog_name gdm, prog_file /usr/sbin/gdm-binary, uid 0, target_type FILE, tid Device 254:02 Inode 16 Path /home/users/jens/.xsession-errors, attr none, value none, result NOT_GRANTED by ACL Then I look in the gdm ebuild and found this: enewgroup gdm enewuser gdm -1 -1 /var/lib/gdm gdm While the gdm is installed its add a new user gdm. So I suppose that the gdm is running with that user but is not. root 3930 0.0 0.1 167092 10436 ? Ss Jun13 0:00 /usr/bin/gdm
Explained at: http://projects.gnome.org/gdm/docs/2.14/security.html#gdmuser