From owner-freebsd-bluetooth@FreeBSD.ORG Thu Feb 22 21:08:34 2007 Return-Path: X-Original-To: freebsd-bluetooth@freebsd.org Delivered-To: freebsd-bluetooth@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 7320416A400 for ; Thu, 22 Feb 2007 21:08:34 +0000 (UTC) (envelope-from maksim.yevmenkin@gmail.com) Received: from nz-out-0506.google.com (nz-out-0506.google.com [64.233.162.235]) by mx1.freebsd.org (Postfix) with ESMTP id 2EF1613C471 for ; Thu, 22 Feb 2007 21:08:34 +0000 (UTC) (envelope-from maksim.yevmenkin@gmail.com) Received: by nz-out-0506.google.com with SMTP id i11so286898nzh for ; Thu, 22 Feb 2007 13:08:34 -0800 (PST) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=TpSTi1qpvtugOR+MaPOojY/gIru9gzzTCOumrccEABR9I2aYt8WyKLBuga2osfkUX/AtNNgnhM0EQyhuZYqbmmnlPvnd0zXgJzaQj3I6TBG4FiWFwjtOsZxc0tM7sxgNLN+J52xVJJcqDALHsXRPNiDQ01W+z23zt+jgvFYS8ss= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=N1k9EZDSNKr1Ed80LNAOeEnyLUzM6JqNEvaU2t9mWg04bLGk+Bu/MtyWcweXHqsOblpciHUk6Q6b+t4h3P/cUrRh7iQE8/XQQXw7RFORupyadSIY/hfeb/FvY7HV1ZhiPyCZaxy9cpYoGcYEf2gzLudbPVcivyEfnD/QS7mgteI= Received: by 10.65.188.4 with SMTP id q4mr1963674qbp.1172178513563; Thu, 22 Feb 2007 13:08:33 -0800 (PST) Received: by 10.65.137.17 with HTTP; Thu, 22 Feb 2007 13:08:33 -0800 (PST) Message-ID: Date: Thu, 22 Feb 2007 13:08:33 -0800 From: "Maksim Yevmenkin" To: "Iain Hibbert" In-Reply-To: <1172174340.896345.1439.nullmailer@galant.ukfsn.org> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <45dd83a3.33a.2350.278725879@rya-online.net> <1172174340.896345.1439.nullmailer@galant.ukfsn.org> Cc: freebsd-bluetooth@freebsd.org Subject: Re: obexapp 1.4.5 X-BeenThere: freebsd-bluetooth@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Using Bluetooth in FreeBSD environments List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 22 Feb 2007 21:08:34 -0000 On 2/22/07, Iain Hibbert wrote: > On Thu, 22 Feb 2007, Maksim Yevmenkin wrote: > > > ah, i see. i was thinking exactly the same, except that i would like > > to make authentication procedure between local sdp client and local > > sdp server well defined and mandatory. > > Hmm, maybe with an AUTH Request/Response rather than credential check? I'm > not sure if that would be a lot of work..? i doubt that we need to go this route. that is just for the local clients. imo, credentials should be more then enough. > I had a thought before about adding an option to permit group access to > the server (eg "-G staff"), and this would not seem so very difficult to > implement (maybe even multiple groups..) yes, i had the same idea too. it's trivial to implement - just need to pass list of user ids and/or group ids that allowed to register services with sdpd. then check credentials against those lists. > > right now, sdpd simply uses getsockopt() to pull cached (inside > > socket) peers credentials (i.e. no messages flow between the client > > and the server) > > Yeah, thats a FreeBSD extension though and so far as I recall, I think > there was some resistance to including it in NetBSD for whatever reason. ok > I didn't get around to the zero length packets, but the following diff > which moves the ServerRegister up before the setuid() calls does the job > for NetBSD at least.. looks reasonable. i will take a closer look and commit this and other patches later. thanks, max