Re: Proposal "LUID"

From: allbery@kf8nh.apk.net
Date: Sun Apr 16 2000 - 14:57:01 EST


On 16 Apr, Austin Schutz wrote:
+-----
| I think the whole concept is lacking. If I have EUID 0 I can do
|
| # echo "+ +" >/root/.rhosts
|
| ..And now anyone can log in as root with LUID 0. So.. what was gained?
+--->8

What was gained was that the filesystem auditing code will have logged
the fact that you (as identified by your LUID, which will still
indicate *you*) made that modification. That's the whole point of
LUIDs: to provide a reliable user identity for auditing changes to the
system.

Once again, LUIDs are not used for authentication or access control.
They are used for *secure auditing*.

-- 
brandon s. allbery	   os/2,linux,solaris,perl	allbery@kf8nh.apk.net
system administrator	   kthkrb,heimdal,gnome,rt	  allbery@ece.cmu.edu
carnegie mellon / electrical and computer engineering			kf8nh
    We are Linux. Resistance is an indication that you missed the point.

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/



This archive was generated by hypermail 2b29 : Sun Apr 23 2000 - 21:00:09 EST