Re: unowned processes and who controls them (was: Re: passwd entry for uid -1

To: Neal H Walfield <neal@cs.uml.edu>
Cc: Oystein Viggen <oysteivi@tihlde.org>, Niels Möller <nisse@lysator.liu.se>, Robert Bihlmeyer <robbe@orcus.priv.at>, debian-hurd@lists.debian.org
Subject: Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>
Date: Thu, 7 Jun 2001 16:19:46 +0200
Message-id: <[🔎] 20010607161946.A593@212.23.136.22>
In-reply-to: <[🔎] 20010607101034.A2041@andronicus.walfield.org>
References: <[🔎] 87y9r7knna.fsf@orcus.priv.at> <[🔎] 20010605173251.A5365@212.23.136.22> <[🔎] 03itia9axu.fsf@colargol.tihlde.org> <[🔎] 20010605183437.B5365@212.23.136.22> <[🔎] 03elsy92bg.fsf@colargol.tihlde.org> <[🔎] nn4rttxs5a.fsf@sture.lysator.liu.se> <[🔎] 03bso15lgv.fsf@colargol.tihlde.org> <[🔎] nn1yoxxlks.fsf@sture.lysator.liu.se> <[🔎] 03y9r44whi.fsf@colargol.tihlde.org> <[🔎] 20010607101034.A2041@andronicus.walfield.org>

On Thu, Jun 07, 2001 at 10:10:34AM -0500, Neal H Walfield wrote:
> > That would be correct.  But in the general ftp daemon, you _might_ also
> > need to be able to setuid() to some user (to provide logins), and to
> > chroot (which is not a privileged operation for the hurd anyway).  If
> > you want to provide logins, you also need read access to /etc/shadow to
> > be able to verify peoples passwords.
> 
> Just because you have no uids does not mean you cannot run addauth.
> And since a user is trying to login in as a specific user, you provide
> that password to the addauth prompt.  Therefore, you can run with no
> uids and switch to other users without reading /etc/shadow.

It is probably useful to add here that the server responsible for that is
the password server, which hands out auth handles with uids in exchange for
the password.  This server runs as root and sits on /servers/password.

Marcus

-- 
`Rhubarb is no Egyptian god.' Debian http://www.debian.org brinkmd@debian.org
Marcus Brinkmann              GNU    http://www.gnu.org    marcus@gnu.org
Marcus.Brinkmann@ruhr-uni-bochum.de
http://www.marcus-brinkmann.de

Reply to:

Follow-Ups:
- Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
  - From: Oystein Viggen <oysteivi@tihlde.org>

References:
- Re: passwd entry for uid -1
  - From: Robert Bihlmeyer <robbe@orcus.priv.at>
- Re: passwd entry for uid -1
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>
- Re: passwd entry for uid -1
  - From: Oystein Viggen <oysteivi@tihlde.org>
- unowned processes and who controls them (was: Re: passwd entry for uid -1
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>
- Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
  - From: Oystein Viggen <oysteivi@tihlde.org>
- Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
  - From: nisse@lysator.liu.se (Niels Möller)
- Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
  - From: Oystein Viggen <oysteivi@tihlde.org>
- Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
  - From: nisse@lysator.liu.se (Niels Möller)
- Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
  - From: Oystein Viggen <oysteivi@tihlde.org>
- Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
  - From: Neal H Walfield <neal@cs.uml.edu>

Prev by Date: apt-get source .. [was Re: loading shared objects at run time and recursive locks]
Next by Date: Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
Previous by thread: Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
Next by thread: Re: unowned processes and who controls them (was: Re: passwd entry for uid -1
Index(es):
- Date
- Thread