For devices, I was under the impression that it was preferable to rely on file system permissions rather than having the driver do its own access control checks. Should that precedent apply here?
Darren J Moffat wrote: > Gordon Ross wrote: >>> Jordan Brown writes: >>>> Once running, smbiod accepts door calls asking it to make new >>>> connections. Such door calls provide the server IP address >>>> and authentication information needed for initiating or >>>> re-creating a connection to a server. Once the connection to >>> What authorization or credentials are required for smbiod to accept a >>> door call? Does it just test UID? >> >> The door is owned by the user and has mode 0600. >> That appears to be sufficient to prevent other >> users from opening these doors. > > Given it is trivial to do so the door server should also check that the > calling peer is running with the same creds that it is. See > door_ucred(3C) and ucred_get(3C). > >
