[Freeipa-devel] [PATCH] added a privileged pipe
Simo Sorce
ssorce at redhat.com
Thu Mar 5 15:01:03 UTC 2009
On Thu, 2009-03-05 at 15:52 +0100, Sumit Bose wrote:
> Sumit Bose schrieb:
> > Hi,
> >
> > in some off-list discussion the scm_credentials solution was found
> not
> > to be portable enough. This patch creates a second, privileged, pipe
> > which only root can access. A flag in the client connection context
> > indicates whether the connection was made via the privileged pipe or
> > not. This information can be forwarded to the backend which can
> decided
> > if they want to allow privileged operation or not.
> >
>
> new version with privileged pipe in private/.
Pushed but renamed private/pam.priv to just private/pam, I think that's
private enough :-)
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the Freeipa-devel
mailing list