[solved] authenticating users for the control socket
martin f krafft
madduck at debian.org
Wed Jun 13 12:50:17 UTC 2007
also sprach Gabor Gombas <gombasg at sztaki.hu> [2007.06.13.1223 +0100]:
> You should be aware that this is Linux-specific. AFAIK newer *BSDs have
> the getpeerid() function, others have LOCAL_PEERCRED that is similar to
> Linux's SO_PEERCRED. Neither getpeerid() nor LOCAL_PEERCRED returns the
> PID of the remote process, but I think that is not a problem.
Actually, it kinda is, since I am spawning threads for client PIDs.
However, right now they are merely used to tag log entries.
Thanks for letting me know, I shall avoid using the client PID for
anything important.
As for SO_PEERCRED being non-portable, I am willing to ignore it for
now and implement this later. My goal is to get a prototype out,
even if it supports only Linux for now.
> Other Unices may have other methods and some do not support this
> kind of authentication at all, but I do not think we should worry
> about those.
No, definitely not.
Thanks for your input.
--
.''`. martin f. krafft <madduck at debian.org>
: :' : proud Debian developer, author, administrator, and user
`. `'` http://people.debian.org/~madduck - http://debiansystem.info
`- Debian - when you have better things to do than fixing systems
the united nations did a poll about food. the only question they asked
was: "could you please give your honest opinion about a solution for
the shortage of food in the rest of the world?" this poll failed
because:
- in africa they didn't know what food was....
- in eastern-europe they didn't know what honest was....
- in western-europe they didn't know what shortage was...
- in china they didn't know what opinion was...
- in the middle-east they didn't know what solution was...
- in south-america they didn't know what please was...
- and in the usa they didn't know what "the rest of the world" was...
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature (GPG/PGP)
Url : http://lists.alioth.debian.org/pipermail/netconf-devel/attachments/20070613/d83d7b16/attachment.pgp
More information about the netconf-devel
mailing list