[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: Heads up for login managers

From: Alan Cox <alan redhat com>
To: David Zeuthen <davidz redhat com>
Cc: List for Fedora Package Maintainers <fedora-maintainers redhat com>
Subject: Re: Heads up for login managers
Date: Mon, 12 Feb 2007 13:36:26 -0500

On Mon, Feb 12, 2007 at 12:59:29PM -0500, David Zeuthen wrote:
> Repeating my idea 
> 
>  1. Login manager tags the desktop login process with a random cookie

We use a cookie called "uid" and one called "gid". 

>  2. Unprivileged processes cannot read nor write the cookie

We let them read it, but not write it.

>  3. The cookie is inherited by all child processes

Yes.

>  4. Privileged processes, like ConsoleKit daemon, can read the cookie

Yes. When a message is sent via unix domain sockets the cookie is made
available to the recipient solely for checking.

Alan

Follow-Ups:
- Re: Heads up for login managers
  - From: David Zeuthen

References:
- Heads up for login managers
  - From: David Zeuthen
- Re: Heads up for login managers
  - From: Steve Grubb
- Re: Heads up for login managers
  - From: David Zeuthen
- Re: Heads up for login managers
  - From: Steve Grubb
- Re: Heads up for login managers
  - From: David Zeuthen
- Re: Heads up for login managers
  - From: Alan Cox
- Re: Heads up for login managers
  - From: David Zeuthen
- Re: Heads up for login managers
  - From: David Zeuthen

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]