But I think I’m drifting away partially after kre@ explanation.
On 6 Jun 2025, at 12:22 PM, Jason Thorpe <thorpej%me.com@localhost> wrote:
On Jun 5, 2025, at 11:58 PM, Emmanuel Nyarko <emmankoko519%gmail.com@localhost> wrote:
So what I want to get clear is that, if the root accepts a connection and gives that new(connect) socket to a less-privileged process, is it desirable that the new socket, given to the less-privileged process, still maintain a root so_cred? Even if I don’t do it as default and make it opt-in as we’ve agreed, do you consider the change a plausible one ?
Yes, I think that is perfectly reasonable. But since it is a major behavioral change that could break existing software, the behavior should be opt-in. -- thorpej
A scoffer seeks wisdom in vain, but knowledge is easy for a man of understanding.
Emmanuel
|