[Openswan dev] user control of conns

Ludwig Nussel ludwig.nussel at suse.de
Wed Dec 8 13:10:08 CET 2004


Michael Richardson wrote:
> DHR, I wrote a minimal version of whack that can only do --initiate
>      and --terminate. 
> 
> It was my intention to make this program setuid root, such that it could
> talk to the whack socket. 
> 
> On the other hand, making the whack socket have group permissions
> permits the executable either to be setgid() instead, or for the user to
> actually be a member of a "pluto" (or "ipsec" ??) group.
> 
> What do you think?

Use neither setuid nor setgid, make the socket accessible by
everyone instead. It's a unix domain socket so pluto can check who
is connecting and reject unauthorized users. The messages coming
from non-root users cannot be trusted then though.

cu
Ludwig

-- 
 (o_   Ludwig Nussel
 //\   SUSE LINUX Products GmbH, Development
 V_/_  http://www.suse.de/


More information about the Dev mailing list