Searched hist:"81407 c84ace88368ff23abb81caaeacf050c8450" (Results 1 – 2 of 2) sorted by relevance
| /openbmc/linux/kernel/ |
| H A D | auditsc.c | diff 81407c84ace88368ff23abb81caaeacf050c8450 Fri May 24 08:49:14 CDT 2013 Eric Paris <eparis@redhat.com> audit: allow unsetting the loginuid (with priv)
If a task has CAP_AUDIT_CONTROL allow that task to unset their loginuid.
This would allow a child of that task to set their loginuid without
CAP_AUDIT_CONTROL. Thus when launching a new login daemon, a
priviledged helper would be able to unset the loginuid and then the
daemon, which may be malicious user facing, do not need priv to function
correctly.
Signed-off-by: Eric Paris <eparis@redhat.com>
Signed-off-by: Richard Guy Briggs <rgb@redhat.com>
Signed-off-by: Eric Paris <eparis@redhat.com>
|
| /openbmc/linux/fs/proc/ |
| H A D | base.c | diff 81407c84ace88368ff23abb81caaeacf050c8450 Fri May 24 08:49:14 CDT 2013 Eric Paris <eparis@redhat.com> audit: allow unsetting the loginuid (with priv)
If a task has CAP_AUDIT_CONTROL allow that task to unset their loginuid.
This would allow a child of that task to set their loginuid without
CAP_AUDIT_CONTROL. Thus when launching a new login daemon, a
priviledged helper would be able to unset the loginuid and then the
daemon, which may be malicious user facing, do not need priv to function
correctly.
Signed-off-by: Eric Paris <eparis@redhat.com>
Signed-off-by: Richard Guy Briggs <rgb@redhat.com>
Signed-off-by: Eric Paris <eparis@redhat.com>
|