Re: RFC: [PATCH] SCM_CREDS support

To: Svante Signell <svante.signell@gmail.com>
Cc: Samuel Thibault <samuel.thibault@gnu.org>, debian-hurd <debian-hurd@lists.debian.org>, bug-hurd <bug-hurd@gnu.org>
Subject: Re: RFC: [PATCH] SCM_CREDS support
From: "Neal H. Walfield" <neal@walfield.org>
Date: Thu, 24 Oct 2013 15:48:30 +0200
Message-id: <[🔎] 87iowmvky9.wl%neal@walfield.org>
In-reply-to: <[🔎] 1382621891.4928.40.camel@s1499.it.kth.se>
References: <[🔎] 1382614802.21791.60.camel@G3620.my.own.domain> <[🔎] 20131024123435.GM5536@type.youpi.perso.aquilenet.fr> <[🔎] 1382621891.4928.40.camel@s1499.it.kth.se>

At Thu, 24 Oct 2013 15:38:11 +0200,
Svante Signell wrote:
> > Well, the question is quite simple: what happens when the sender
> > provides faked ports, e.g. pointing to other proc/auth servers?  That's
> > where having to explain how the patch is working would possibly even
> > work out the security issues.
> 
> How could it point to other proc/auth servers? The receiver is using the
> ports of the same proc server. Are you considering more than one
> instance running? This is communication on a local socket, and the
> socket read/write mode is controlling the access to it. In the
> implementation only the same user and root could send. for other users
> the socket permission has to be changed from srw-r--r-- to srw-r--rw-
> Tested by sending as another user.

There is not a check of who opened the socket, but the sender.  These
may be different.

Neal

Reply to:

References:
- RFC: [PATCH] SCM_CREDS support
  - From: Svante Signell <svante.signell@gmail.com>
- Re: RFC: [PATCH] SCM_CREDS support
  - From: Samuel Thibault <samuel.thibault@gnu.org>
- Re: RFC: [PATCH] SCM_CREDS support
  - From: Svante Signell <svante.signell@gmail.com>

Prev by Date: Re: RFC: [PATCH] SCM_CREDS support
Next by Date: Re: RFC: [PATCH] SCM_CREDS support
Previous by thread: Re: RFC: [PATCH] SCM_CREDS support
Next by thread: Re: RFC: [PATCH] SCM_CREDS support
Index(es):
- Date
- Thread