Re: CoreMIDI and sudo ...
Re: CoreMIDI and sudo ...
- Subject: Re: CoreMIDI and sudo ...
- From: John Lazzaro <email@hidden>
- Date: Mon, 23 Sep 2002 18:46:51 -0700
>
Doug Wyatt <email@hidden> writes:
>
>
I'd be glad to consider suggestions for how to improve this behavior
>
without creating security issues.
One possible fix, I vaguely recall one of the setuid()-related
calls lets a process drop its effective UID privileges and take on its
actual UID privileges. If a CoreMIDIServer checked its effective and
real UIDs on takeoff, discovered the sudo case, and dropped root
permanently, does this make the Mach ports visible to new processes
with the actual UID?
I assume the more general solution (a single CoreMIDIServer daemon
that launches on system startup, and manages the MIDI hardware for
all processes from all users) was considered and rejected early on.
Daemons that use this model must solve the Mach port issue somehow,
I would think, unless they don't use ports in communicating with
other processes at all ...
-------------------------------------------------------------------------
John Lazzaro -- Research Specialist -- CS Division -- EECS -- UC Berkeley
lazzaro [at] cs [dot] berkeley [dot] edu www.cs.berkeley.edu/~lazzaro
-------------------------------------------------------------------------
_______________________________________________
coreaudio-api mailing list | email@hidden
Help/Unsubscribe/Archives:
http://www.lists.apple.com/mailman/listinfo/coreaudio-api
Do not post admin requests to the list. They will be ignored.