Who dat?
Dave Brower
daveb at llama.rtech.UUCP
Sat Jul 9 05:21:46 AEST 1988
On a single machine, we have a suid server process. A random client
program wishes to connect and have the server perform some services. The
server wants to know who the client is before doing anything. They might
be communicating with sockets, fifos, msgs, or shared memory.
How can the server find out who the client is, in a spoof-proof and
secure way? On BSD, one can have the server ask the client to create a
randomly-named file, and the server can see who the owner of the file
is. On SV, this fails because the client can chown it to be anyone
else. (The same is true of msgs and shm segments).
Oh wise and knowledgeable Wizards, what is a Way?
Thanks,
-dB
---
"Ready when you are Raoul!"
{amdahl, cpsc6a, mtxinu, sun, hoptoad}!rtech!daveb daveb at rtech.com <- FINALLY!
More information about the Comp.unix.wizards
mailing list