Date: Tue, 05 Jun 2012 16:42:36 -0500 From: Bryan Drewery <bryan@shatow.net> To: Jilles Tjoelker <jilles@stack.nl> Cc: freebsd-hackers@freebsd.org Subject: Re: [RFC] last(1) with security.bsd.see_other_uids support Message-ID: <4FCE7D4C.7010702@shatow.net> In-Reply-To: <20120605213101.GA13339@stack.nl> References: <4FCC126C.1020600@shatow.net> <20120605213101.GA13339@stack.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig96174B77C8C6AF3CEC499B58 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable On 6/5/2012 4:31 PM, Jilles Tjoelker wrote: > To avoid this, the utmpx APIs could communicate with a privileged daemo= n > if the files are not readable. The daemon can check the identity of the= > caller via getpeereid(3). (Unfortunately, even if getpeereid() is > bypassed and LOCAL_PEERCRED called directly, only 16 groups can be > queried. Therefore the daemon cannot check the process credential for > the groups but will have to check the group database for the user.) >=20 > Also, the attack surface of such a daemon may be smaller than that of a= > setuid/setgid program. >=20 > Alternatively, the daemon could be a setgid program that is spawned by > the utmpx APIs when needed. I like this idea a lot. I will experiment with that. --=20 Regards, Bryan Drewery bdrewery@freenode, bryan@EFNet --------------enig96174B77C8C6AF3CEC499B58 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBAgAGBQJPzn1QAAoJEG54KsA8mwz5wYIQAIPe9MAiejKXJOufsxtbsy5W iyJ2Kqg5quwCQhMoKtDgTXGz62T2DAK2JXuJ9eH4h2jkBk25ljtnCLfuejBtG3+A 2sbA5JnraJG7MMTs9ORblTtLGJtBLQ9wg4ckmwmwGTgTFaXNQwLWe6fd0eJHKOMe UCzceWmAEdBJ9PTPON82uUpF7kTfAIFl6xuMA4CEnQShH94msFToWqbJuN68lfGz +ZaFadcZNZJg1KYqdxwbhCNQ5YxpG12RwraDdqn07BptLp1TgAUVA1sqC6u08gM4 3tIJTQ1Toy59B3BrtpRKXWe/p1KZXLTXkeTf5X02z6Mrfa37V+FzaZE5pMSvJ4Q7 lU/q0iJXzqBbuhaNc1/dyNTlResZfXKx7m0pNeN/Wwem1ojCvV1LtXntekaANyi1 fk8/CSpiYZ9+mXa93G4g2NlJjhMdbnoEy+f3xAjF9xIyMcqjJI2nGiRn3oXTfnRE xClTPyI2ykr1nR+kqum6928XDkfzr8CUC1rfVWZyeIEdLCmca3oQnwwy/muj9cZA MThCs0q9wCoVPHmfJbZdwojHa9UvMtAMJ9eK1iGfug1mFS7pqG1lOWUlHASzR+FK PhdogztNLuIY5LNH8KQEyW0iUdVBFPTWPket7tSiszQi1LFN4Q4ogMegisKx7JqI 0avT4louipO8LpSEKIGg =5oqN -----END PGP SIGNATURE----- --------------enig96174B77C8C6AF3CEC499B58--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4FCE7D4C.7010702>