From: Albert Cahalan <albert@users.sf.net>
To: Chris Wright <chrisw@osdl.org>
Cc: Albert Cahalan <albert@users.sourceforge.net>,
sds@epoch.ncsc.mil, Andrew Morton OSDL <akpm@osdl.org>,
serue@us.ibm.com,
linux-kernel mailing list <linux-kernel@vger.kernel.org>
Subject: Re: [PATCH] audit: handle loginuid through proc
Date: Fri, 25 Feb 2005 10:15:47 -0500 [thread overview]
Message-ID: <1109344547.5125.228.camel@cube> (raw)
In-Reply-To: <20050225064909.GD28536@shell0.pdx.osdl.net>
On Thu, 2005-02-24 at 22:49 -0800, Chris Wright wrote:
> * Albert Cahalan (albert@users.sourceforge.net) wrote:
> > Assuming you'd like ps to print the LUID, how about
> > putting it with all the others? There are "Uid:"
> > lines in the /proc/*/status files.
>
> It's also set (written) via /proc, so it should probably stay separate.
Gross. Please rip this out before it hits the streets.
(it's an interface change that might need eternal support)
Consider that:
1. Every other UID is handled by system calls:
getuid, setuid, geteuid, setreuid,
setresuid, getresuid, setfsuid
2. HP's Tru64 has getluid() and setluid() system calls
that Linux should be compatible with. SecureWare has a
version too, which looks more-or-less compatible with
what HP is offering. (the descriptions do not conflict,
but one has more details) It looks like ssh, apache,
and sendmail (huh?) already knows to use these system
calls even.
The <prot.h> header is used. Prototypes are the obvious.
The setuid() call returns 0 on success.
Tru64 notes that the login UID is sometimes called the
audit UID (AUID) because it is recorded with most audit
events.
getluid() returns an error if the LUID (AUID) is unset.
SecureWare additionally notes that setuid() and setgid() will
also fail when the luid is unset, to ensure that the LUID
is set before any other identity changes. (probably Linux
should just disable setting LUID after that point)
------------
Just to be complete, here's what Sun did:
Sun has getauid() and setauid() syscalls which are
somewhat similar. They take pointers to the ID, and they
require privilege (PRIV_SYS_AUDIT and PRIV_PROC_AUDIT
for setauid, or just PRIV_PROC_AUDIT for getauid)
These calls have been superceded by getaudit_addr() and
setaudit_addr(), which use structs containing:
au_id_t ai_auid; // audit user ID
au_mask_t ai_mask; // preselection mask
au_tid_addr_t ai_termid; // terminal ID
au_asid_t ai_asid; // audit session ID
(the terminal ID is variable length, containing a
network address and a length value for it)
next prev parent reply other threads:[~2005-02-25 15:43 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2005-02-25 6:14 [PATCH] audit: handle loginuid through proc Albert Cahalan
2005-02-25 6:49 ` Chris Wright
2005-02-25 15:15 ` Albert Cahalan [this message]
2005-02-25 17:08 ` Chris Wright
-- strict thread matches above, loose matches on Subject: below --
2005-01-27 17:36 [PATCH] [audit] " Serge E. Hallyn
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1109344547.5125.228.camel@cube \
--to=albert@users.sf.net \
--cc=akpm@osdl.org \
--cc=albert@users.sourceforge.net \
--cc=chrisw@osdl.org \
--cc=linux-kernel@vger.kernel.org \
--cc=sds@epoch.ncsc.mil \
--cc=serue@us.ibm.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox