Richard W.M. Jones writes:
I suspect there is still a small race window, even if you've got the right %post hook.Does it need to be the same executable? Isn't it sufficient to check that it's the same user (ie. using SO_PEERCRED): http://www.perlmonks.org/?node_id=952805 Or perhaps something using SCM_RIGHTS/SCM_CREDENTIALS ...
Well, SCM_RIGHTS/SCM_CREDENTIALS is how you get the peer's pid in the first place.
This would be an additional check, on top of that.
pgpH0X2Qir8p8.pgp
Description: PGP signature
-- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
