* [9fans] "least privilege" for secstored?
@ 2006-08-10 20:59 Dave Eckhardt
0 siblings, 0 replies; only message in thread
From: Dave Eckhardt @ 2006-08-10 20:59 UTC (permalink / raw)
To: 9fans
How do you run your secstore daemon?
If you run it as the host owner on a file server
or CPU server, couldn't an bug in secstore turn
over control of the machine, users' keys, etc?
If it's run as "none", doesn't that mean anybody
with access to the machine can collect the
encrypted files for a leisurely brute-force attack?
Is there an easy way I'm overlooking for the host
owner to run secstored as a different user in,
e.g., cpurc? auth/none switches users, but only
to "none"; auth/login seems to be determinedly
interactive. Am I overlooking a "run X as Y"
wrapper program?
I'll summarize responses into a wiki page.
Dave Eckhardt
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2006-08-10 20:59 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2006-08-10 20:59 [9fans] "least privilege" for secstored? Dave Eckhardt
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).