[Openswan dev] user control of conns
Ludwig Nussel
ludwig.nussel at suse.de
Wed Dec 8 13:10:08 CET 2004
Michael Richardson wrote:
> DHR, I wrote a minimal version of whack that can only do --initiate
> and --terminate.
>
> It was my intention to make this program setuid root, such that it could
> talk to the whack socket.
>
> On the other hand, making the whack socket have group permissions
> permits the executable either to be setgid() instead, or for the user to
> actually be a member of a "pluto" (or "ipsec" ??) group.
>
> What do you think?
Use neither setuid nor setgid, make the socket accessible by
everyone instead. It's a unix domain socket so pluto can check who
is connecting and reject unauthorized users. The messages coming
from non-root users cannot be trusted then though.
cu
Ludwig
--
(o_ Ludwig Nussel
//\ SUSE LINUX Products GmbH, Development
V_/_ http://www.suse.de/
More information about the Dev
mailing list