On Apr 4, 2008, at 7:03 AM, Ludovic Rousseau wrote:
As you wrote all communications are over a single socket /var/run/pcscd.comm. So you just need to use the Unix security mechanism to restrict the access to this file to users allowed to use the smart card (create a group smartcard for example).
Nevertheless this is a serious issue on multi-user machines. It's *my* card and *you* aren't allowed to use it.
pcscd needs to maintain a separate socket per reader at the very least.
This security configuration is left to the local system administrator.
Sorry, that's a terrible idea. Glomming all pcscd communications through a single filesystem socket and relying on externally set permissions is a recipe for compromise. In short, this design presumes a single-session system, a demonstrably false assumption.
-- Tim
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ opensc-devel mailing list [email protected] http://www.opensc-project.org/mailman/listinfo/opensc-devel
