Re: suidpid( UID, credential? ) ? secure IPC?

Theodore Y. Ts'o (tytso@MIT.EDU)
Tue, 7 Oct 1997 15:11:48 -0400

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: H. Peter Anvin: "Re: patch for CLONE_PID enhancements to clone()"
Previous message: Alan Cox: "Re: Security hole in linux-2.0.31-pre9 (NFS related)"
In reply to: Pavel Machek: "Re: Security hole in linux-2.0.31-pre9 (NFS related)"

Date: Tue, 07 Oct 1997 07:59:58 -0700
From: Jim Dennis <jimd@starshine.org>

But it's still SUID. Now you'd have SUID shared libraries
-- yuck! What's wrong with a client/server model? Define
protocols and implement some means of passing resources
(such as open file handles) and delegating privileges
(such as access to a given "privileged" TCP port).

>From a security model, there's no real difference between a Protected
Shared Library and a client/server model where the server is running as
root. Think about it....

In fact, if you're depending on "privileged" TCP port, a client/server
model would be *less* secure than a properly done PSL....

- Ted

Next message: H. Peter Anvin: "Re: patch for CLONE_PID enhancements to clone()"
Previous message: Alan Cox: "Re: Security hole in linux-2.0.31-pre9 (NFS related)"
In reply to: Pavel Machek: "Re: Security hole in linux-2.0.31-pre9 (NFS related)"