Re: [PATCH] sysctl: permission check based on capability not euid

view
thread

!MAILaRCHIVE_VOTE_RePLACE

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Chris Wright <chrisw@...>

To: Stephen Hemminger <stephen.hemminger@...>

Cc: Andrew Morton <akpm@...>, Chris Wright <chrisw@...>, <linux-kernel@...>, <netdev@...>

Subject: Re: [PATCH] sysctl: permission check based on capability not euid

Date: Wednesday, May 28, 2008 - 4:14 pm

* Stephen Hemminger (stephen.hemminger@vyatta.com) wrote:
quoted text> This patch modifies the permission checks for sysctl's from being based on uid=0 (root)
> to use the capability system. This matches the behavior of other OS's using sysctl's
> and capabilities. Linux has tried to get away from using uid=0 for security overrides
> and use capabilities instead. 
> 
> I was working on Quagga enhancement that involved enabling a sysctl, and it didn't
> work because is a safe daemon and drops privileges and resets its real/effective uid
> after initialization; it then re-enables only the capabilities when it needs to
> do some privileged operation. This wouldn't work because sysctl's were still using
> the root based permission check. The existing code in quagga to enable ip forwarding
> doesn't work for the same reason.

I don't think CAP_SYS_ADMIN makes sense for net.*, for example.
--
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[PATCH] sysctl: permission check based on capability not euid, Stephen Hemminger, (Wed May 28, 3:12 pm)

Re: [PATCH] sysctl: permission check based on capability not..., Chris Wright, (Wed May 28, 4:14 pm)

Navigation

Popular discussions


linux-kernel:
Greg Kroah-Hartman	[PATCH 004/196] Chinese: add translation of SubmittingPatches
Alan Stern	Re: 2.6.22-rc2-mm1
Satyam Sharma	Re: [PATCH 0/24] make atomic_read() behave consistently across all architectures
William Lee Irwin III	Re: [Announce] [patch] Modular Scheduler Core and Completely Fair Scheduler [CFS]
git:

linux-netdev:
Dale Farnsworth	Re: [PATCH 03/39] mv643xx_eth: shorten reg names
Jarek Poplawski	Re: HTB accuracy for high speed
Gerrit Renker	[PATCH 15/37] dccp: Set per-connection CCIDs via socket options
Jarek Poplawski	[PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
openbsd-misc:

Colocation donated by:

Online users

Syndicate