User space install of Vivaldi without sudo/root/elevated privilege on Linux



  • How do you do a non-privileged install of Vivaldi on Linux without access to a package manager?

    I'm allowed to install trusted packages on my RedHat 7 box at work, but only in my directory and with no elevated privilege. I was able to do user-space installs easily with Opera (which I used back when you had to pay for it :-), so I expected it to be equally simple for Vivaldi, but I'm missing something.

    I'm sure this has been asked dozens of times, but no matter how I compose my search I can't find it. I found one answer from 3 years ago that wasn't clear to me. I've been hoping to recommend Vivaldi to my co-workers, but they're in the same boat privilege-wise.


  • Moderator

    YES! You can, we can! ;)

    Use a Standalone, extract the deb/rpm package.
    Please read https://help.vivaldi.com/article/standalone-version-of-vivaldi/ and
    https://gist.github.com/ruario/8f648cc3069d1a55d9c8
    for a Standalone install.



  • Thanks for your reply.

    I tried installing vivaldi-stable-1.15.1147.36-1.x86_64.rpm using the vivaldi_standalone.sh script, but when I try to run it I get the following error
    that suggests that I need to change the ownership of a setuid file to root. Either I've done something wrong or this isn't an unprivileged install.

    [7589:7589:0426/145657.703457:FATAL:setuid_sandbox_host.cc(157)] The SUID sandbox helper binary was found, but is not configured correctly. Rather than run without sandboxing I'm aborting now. You need to make sure that /nobackup/mcary/vivaldi-1.15.1147.36-x64/opt/vivaldi/vivaldi-sandbox is owned by root and has mode 4755.

    [1]+ Aborted (core dumped) ./vivaldi



  • @matt_cary regular users are not allowed to create files with the needed properties.
    Owner and flags get converted to allowed values on archive extraction.

    Easiest workaround would be to simply rename the vivaldi-sandbox binary (to hide it).
    On new enough kernels with the right features the remaining security measures should suffice.
    Check vivaldi://sandbox page to make shure after startup.
    If too much features are missing you are out of luck (in danger of beeing exploited) and shoud not apply this solution.

    Theoretically it is possible to use a compatible SUID binary from an (potentially) existing Chromium installation.
    But I was never able to get such a setup to work in the past.


  • Moderator

    @matt_cary Oh, i did not check the script. You are right, without suid no running standalone.

    Works only with vivaldi-1.15.1147.36-x64/vivaldi --no-sandbox&
    DANGER! YOU SHOULD NEVER SWITCH OFF SANDBOX FOR SURFING!

    I will ask our Linux dev.


Log in to reply
 

Looks like your connection to Vivaldi Forum was lost, please wait while we try to reconnect.