[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: RFC: [PATCH] SCM_CREDS support 1(2)
|
From: |
Svante Signell |
|
Subject: |
Re: RFC: [PATCH] SCM_CREDS support 1(2) |
|
Date: |
Wed, 16 Oct 2013 09:50:27 +0200 |
On Wed, 2013-10-16 at 09:24 +0200, Samuel Thibault wrote:
> Svante Signell, le Wed 16 Oct 2013 07:44:11 +0200, a écrit :
> > What about being paranoid, and do the check on both the transmit _and_
> > receive side?
>
> There is no need for a check on the transmit side: the sender does know
> for sure what he is.
As a motivation for having the check at the receive side, a malicious
sender will not got through sendmsg then?
So let's be serious, which entries are part of the ancillary data to
check: pid, auid, agid, euid, egid (not in scm_creds), cmcred_groups[]?
E.g. where to add the groups data, on the transmit or receive side?
- RFC: [PATCH] SCM_CREDS support 1(2), Svante Signell, 2013/10/15
- Re: RFC: [PATCH] SCM_CREDS support 1(2), Samuel Thibault, 2013/10/15
- Re: RFC: [PATCH] SCM_CREDS support 1(2), Svante Signell, 2013/10/15
- Re: RFC: [PATCH] SCM_CREDS support 1(2), Samuel Thibault, 2013/10/15
- Re: RFC: [PATCH] SCM_CREDS support 1(2), Svante Signell, 2013/10/15
- Re: RFC: [PATCH] SCM_CREDS support 1(2), Samuel Thibault, 2013/10/15
- Re: RFC: [PATCH] SCM_CREDS support 1(2), Samuel Thibault, 2013/10/15
- Re: RFC: [PATCH] SCM_CREDS support 1(2), Svante Signell, 2013/10/16
- Re: RFC: [PATCH] SCM_CREDS support 1(2), Svante Signell, 2013/10/16
- Re: RFC: [PATCH] SCM_CREDS support 1(2), Samuel Thibault, 2013/10/16
- Re: RFC: [PATCH] SCM_CREDS support 1(2),
Svante Signell <=
- Re: RFC: [PATCH] SCM_CREDS support 1(2), Samuel Thibault, 2013/10/16
- Re: RFC: [PATCH] SCM_CREDS support 1(2), Svante Signell, 2013/10/16
- Re: RFC: [PATCH] SCM_CREDS support 1(2), Samuel Thibault, 2013/10/16
- Re: RFC: [PATCH] SCM_CREDS support 1(2), Samuel Thibault, 2013/10/16