Robert Milkowski a écrit :
Hello Darren,
Wednesday, April 1, 2009, 4:39:29 PM, you wrote:
.../...
Still I don't understand why process with ALL privileges running in a
global zone can't change another process L set via exposed API. There
isn't additional risk as such a process could do in in p
Hello Casper,
Wednesday, April 1, 2009, 7:59:02 PM, you wrote:
>>Hello Darren,
>>
>>Wednesday, April 1, 2009, 2:47:31 PM, you wrote:
>>
>>DJM> Robert Milkowski wrote:
It would also require adjustment of setppriv() at
http://src.opensolaris.org/source/xref/onnv/o
CDSC> nnv-gate/usr/src/
>Hello Darren,
>
>Wednesday, April 1, 2009, 2:47:31 PM, you wrote:
>
>DJM> Robert Milkowski wrote:
>>> It would also require adjustment of setppriv() at
>>> http://src.opensolaris.org/source/xref/onnv/o
nnv-gate/usr/src/uts/common/syscall/ppriv.c#57
>>>
>>> and perhaps somewhere else.
>>>
>>> B
Hello Darren,
Wednesday, April 1, 2009, 4:39:29 PM, you wrote:
DJM> Robert Milkowski wrote:
But right now I'm more asking about why L can't be allowed to grow (when E
is a full set or when new L' is a subset of E set of calling process)
rather then implementing anything.
>>
>> D
Robert Milkowski wrote:
But right now I'm more asking about why L can't be allowed to grow (when E is a
full set or when new L' is a subset of E set of calling process) rather then
implementing anything.
DJM> If L could grow it wouldn't be L it would be P. The reason L can only
DJM> be reduc
Hello Darren,
Wednesday, April 1, 2009, 2:47:31 PM, you wrote:
DJM> Robert Milkowski wrote:
>> It would also require adjustment of setppriv() at
>> http://src.opensolaris.org/source/xref/onnv/onnv-gate/usr/src/uts/common/syscall/ppriv.c#57
>>
>> and perhaps somewhere else.
>>
>> But right now
casper@sun.com wrote:
In my perfect privilege system we would have all of P,I,E,L,F,A. Now
that OpenSolaris has moved to ZFS root and we have a more complete
system/xattr system we could reintroduced the A and F sets.
But not in a process; since we're talking about the process model, F&A
>In my perfect privilege system we would have all of P,I,E,L,F,A. Now
>that OpenSolaris has moved to ZFS root and we have a more complete
>system/xattr system we could reintroduced the A and F sets.
But not in a process; since we're talking about the process model, F&A
aren't important.
Casp
casper@sun.com wrote:
The above code change would allow growing L set if new L' set is a subset
of the effective set of the calling process.
What would be the impact? Would it break anything?
The limit has been designed as a limit you cannot escape.
Changing that would break a promise th
Robert Milkowski wrote:
It would also require adjustment of setppriv() at
http://src.opensolaris.org/source/xref/onnv/onnv-gate/usr/src/uts/common/syscall/ppriv.c#57
and perhaps somewhere else.
But right now I'm more asking about why L can't be allowed to grow (when E is a
full set or when ne
Hi Casper,
Well it depends on the restriction. If the restriction would be that the
effective set of a calling process has to be a full set then you can't conspire
(I mean you don't have to, it's game over already).
That would at the same time allow a "root" user to change L set.
When it comes
>
>
>>The above code change would allow growing L set if new L' set is a subset
>>of the effective set of the calling process.
>>What would be the impact? Would it break anything?
>
>
>The limit has been designed as a limit you cannot escape.
>
>Changing that would break a promise the privilege sy
>The above code change would allow growing L set if new L' set is a subset
>of the effective set of the calling process.
>What would be the impact? Would it break anything?
The limit has been designed as a limit you cannot escape.
Changing that would break a promise the privilege system makes.
I'm looking into this because I need to raise L set of a process running in a
local zone without actually restarting the zone. The zone has default set of
privileges. The only way seems to be changing zone configuration and restartin
the zone which is exactly what I'm trying to avoid.
I could u
It would also require adjustment of setppriv() at
http://src.opensolaris.org/source/xref/onnv/onnv-gate/usr/src/uts/common/syscall/ppriv.c#57
and perhaps somewhere else.
But right now I'm more asking about why L can't be allowed to grow (when E is a
full set or when new L' is a subset of E set
Robert Milkowski wrote:
Hi,
Sometimes it would be really helpful if one could raise L privilege set of a
process, especially when dealing with zones. Currently it is not permitted.
I understand the reason why however if it was permitted to do so only from a
global zone and by process with AL
Hi,
Sometimes it would be really helpful if one could raise L privilege set of a
process, especially when dealing with zones. Currently it is not permitted.
I understand the reason why however if it was permitted to do so only from a
global zone and by process with ALL privileges in its E set
17 matches
Mail list logo
