From mboxrd@z Thu Jan 1 00:00:00 1970 From: Greg KH Date: Wed, 11 Feb 2004 22:34:32 +0000 Subject: Re: [PATCH] udevd - client access authorization Message-Id: <20040211223432.GG14231@kroah.com> List-Id: References: <20040211030404.GA16931@vrfy.org> In-Reply-To: <20040211030404.GA16931@vrfy.org> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit To: linux-hotplug@vger.kernel.org On Wed, Feb 11, 2004 at 04:04:04AM +0100, Kay Sievers wrote: > Here is the badly needed client authorization for udevd. > Since we switched to abstract namespace sockets, we are unable to > control the access of the socket by file permissions. > > So here we send a ancillary credential message with every datagram, > to be able to verify the uid of the sender. The sender can't fake the > credentials, cause the kernel doesn't allow it for non root users. Thanks a lot for fixing this up. I wouldn't want any user to be able to add or remove devices from /dev by just talking through a socket. Applied. greg k-h ------------------------------------------------------- SF.Net is sponsored by: Speed Start Your Linux Apps Now. Build and deploy apps & Web services for Linux with a free DVD software kit from IBM. Click Now! http://ads.osdn.com/?ad_id56&alloc_id438&op=click _______________________________________________ Linux-hotplug-devel mailing list http://linux-hotplug.sourceforge.net Linux-hotplug-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/linux-hotplug-devel