> > The system only checked the access file if the access was not otherwise
> > allowed.
>
> I thought about this, and it might be doable in userspace.
>
> Imagine:
>
> In libc, if you see EPERM on open, send request for 'system opener
> daemon (running at root)' using unix domain socket. If sysopend sees
> you have permission, it passes you opened fd through that socket. Is
> that doable?
Probably, but imagine a huge server with lots of users logged in doing some
work with database system. The server would probably choke on it.
marek
-- -----BEGIN PGP PUBLIC KEY BLOCK----- Version: 2.6.3ia Comment: Requires PGP version 2.6 or later.mQCNAzao258AAAEEAM7hrSfj5QmbZMJ64b1COVrXNuraF95y8Djln0a37UBlLZQ7 4EJ9Die2V2kUSb4ndpCC5owSvR7KWBq6XYTVw7ne42PfzgIe/l+xG2e9pmztS1oZ Yhyow8aQ4Thlw286dvjuqWQ00M0s3XnWB24SpiQzsYZOwEfdlZ1EuNB7BOoNAAUR tCRNYXJlayBIYWJlcnNhY2sgPGdyZW5kZWxAdmlwLm5ldC5wbD6JAJUDBRA2qNuf nUS40HsE6g0BAfYuA/9NShgAKJ/iM5uSYmNXt6srSOIwUumqoVl0GVzXFHFPQaFB gqf2e2wNBIQH5DpGOYeyVW5GWsho+aM3lsPIMgCxKUb2sOuLzywl89GPnoAOc37B UQsbFdTH8cyQGoEjwHgqyu+7Omc5ptGXMjuYO0NN++tQsGRETcnwzSWviGExuA== =+3ah -----END PGP PUBLIC KEY BLOCK-----
- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/