privileges
wlanmac
wlan at mac.com
Tue Feb 3 15:44:10 UTC 2009
I've tested it a bit already. Adding the basic feature of shedding root
priv's (and setting up the shared message queue permissions), it seems
to work generally. But, yes, it would have greater issues with regard to
the uid and gid of script it runs, etc. Perhaps the setuid/gui will be
kept and only used for the fork()ed processes that handle redirects
(http input from subscriber).
David
On Tue, 2009-02-03 at 16:57 +0200, Gunther Mayer wrote:
> Daniel Berteaud wrote:
> > Le samedi 31 janvier 2009 à 11:28 +0100, David Bird a écrit :
> >
> >> Options for uid and gid will be in the next svn update, most likely.
> >>
>
> I can see many issues already with running chilli as non-root: For
> example how should uamanyip create any routes for new static ip clients?
> Also I'm sure there are certain IOCTL's in tun.c which might not take
> lightly to being accessed by an unprivileged user. I think properly
> securing this is a lot more work than it seems... But then again David's
> our man and if he can't do it no-one can ;-)
>
> Gunther
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: chilli-unsubscribe at coova.org
> For additional commands, e-mail: chilli-help at coova.org
> Wiki: http://coova.org/wiki/index.php/CoovaChilli
> Forum: http://coova.org/phpBB3/viewforum.php?f=4
>
More information about the Chilli
mailing list