[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: Heads up for login managers

From: Alan Cox <alan redhat com>
To: David Zeuthen <davidz redhat com>
Cc: List for Fedora Package Maintainers <fedora-maintainers redhat com>
Subject: Re: Heads up for login managers
Date: Mon, 12 Feb 2007 14:36:46 -0500

On Mon, Feb 12, 2007 at 01:41:19PM -0500, David Zeuthen wrote:
> On Mon, 2007-02-12 at 13:36 -0500, Alan Cox wrote:
> > We use a cookie called "uid" and one called "gid". 
> 
> The problem is that these are not per-session; am not sure why that is
> so difficult to understand.
> 
> > >  4. Privileged processes, like ConsoleKit daemon, can read the cookie
> > 
> > Yes. When a message is sent via unix domain sockets the cookie is made
> > available to the recipient solely for checking.
> 
> No reason to be patronizing and assuming that I'd forget UNIX 101.

That was not the goal. The point was that what you appear to be trying
to do maps directly onto the existing uid/gid security.

Alan

Follow-Ups:
- Re: Heads up for login managers
  - From: David Zeuthen

References:
- Heads up for login managers
  - From: David Zeuthen
- Re: Heads up for login managers
  - From: Steve Grubb
- Re: Heads up for login managers
  - From: David Zeuthen
- Re: Heads up for login managers
  - From: Steve Grubb
- Re: Heads up for login managers
  - From: David Zeuthen
- Re: Heads up for login managers
  - From: Alan Cox
- Re: Heads up for login managers
  - From: David Zeuthen
- Re: Heads up for login managers
  - From: David Zeuthen
- Re: Heads up for login managers
  - From: Alan Cox
- Re: Heads up for login managers
  - From: David Zeuthen

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]