Steven J. Long wrote: > On Tue, Sep 30, 2014 at 07:52:02AM -0700, Zac Medico wrote: > > The IPC implementation that I've suggested does not involve an SUID > > helper, so it is much more secure. Security would rely on the permission > > bits of the named pipes that are used to implement IPC. .. > I don't see how that's "more secure"
It's a lot more secure to have a single well-defined privileged trust anchor (the privileged process) with a well-defined protocol, than to have built-in privilege escalation which allows arbitrary actions. > Not sure what a daemon buys you Not requiring built-in privilege escalation. //Peter
