>getpeeruid() has a problem since multiple processes may write to one >datagram socket, also processes can change uid and file handles can be >passed around. > >Both recent *BSD and Linux 2.1.x have per message authentication data >for AF_UNIX sockets that is available as a control message (ie you can >get it via recvmsg()). Also, on systems that have STREAMs based loopback transports, support exists to get the other ends credentials in a similar manner. This is used for authentication on Solaris 2.x loopback rpc (rpcbind, vold, autofsd, keyserv) Casper
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:25:49 PDT