Am 08.03.2018 um 18:54 schrieb Jeffrey Altman: >> 2. let AFS use the per-user keyring instead of the per-session one >> (suggested in the systemd bug discussion) >> >> Does the second one sound reasonable? > Switching to the user keyring is unreasonable. The impact of such a > change is that all user sessions on a system share the same tokens and > an effective uid change permits access to those same tokens. > > Process Authentication Groups (PAGs) exist explicitly to establish a > security barrier to prevent such credential leakage.
I understand. However, why not let the user (or better: admin) decide? I assume this is coded in the cache manager, so the module could be enhanced with a parameter that allows to choose between the two variants at module load time. The current behaviour of using the session keyring could still be the default. Adding my own two cents... Bye... Dirk -- Dirk Heinrichs <[email protected]> GPG Public Key: D01B367761B0F7CE6E6D81AAD5A2E54246986015 Sichere Internetkommunikation: http://www.retroshare.org Privacy Handbuch: https://www.privacy-handbuch.de
signature.asc
Description: OpenPGP digital signature
