On Wed, 2013-10-16 at 09:24 +0200, Samuel Thibault wrote: > Svante Signell, le Wed 16 Oct 2013 07:44:11 +0200, a écrit : > > What about being paranoid, and do the check on both the transmit _and_ > > receive side? > > There is no need for a check on the transmit side: the sender does know > for sure what he is.
As a motivation for having the check at the receive side, a malicious sender will not got through sendmsg then? So let's be serious, which entries are part of the ancillary data to check: pid, auid, agid, euid, egid (not in scm_creds), cmcred_groups[]? E.g. where to add the groups data, on the transmit or receive side? -- To UNSUBSCRIBE, email to debian-hurd-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/1381909827.20538.0.ca...@g3620.my.own.domain
