refs/heads/factory-2368.B - chromiumos/third_party/trousers

commit	0485b37093e67adf7c7aca2a9da50c1627f6fe0e	[log] [tgz]
author	Luigi Semenzato <semenzato@chromium.org>	Mon Feb 27 18:41:00 2012
committer	Gerrit <chrome-bot@google.com>	Thu May 10 20:44:30 2012
tree	87256c75f333ceed25d4ca08e7617872eeba9ae5
parent	be067e9654f6c24268692acb68a6aba8ac48b926 [diff]

Restrict tcsd input to uid root or group tss.

This prevents DOS (or worse) attacks on tcsd by restricting its input to
processes running with UID root or GID tss.

BUG=chromium-os:25099
TEST=installed trousers, verified that /var/run/tcsd.socket is
srw-rw---- 1 root tss, and verified that I can still log on.

Change-Id: I01824ca893ff2172833a9a9b1b98444269356764
Reviewed-on: https://gerrit.chromium.org/gerrit/16820
Reviewed-by: Darren Krahn <dkrahn@chromium.org>
Tested-by: Darren Krahn <dkrahn@chromium.org>
Commit-Ready: Darren Krahn <dkrahn@chromium.org>

src/tcsd/svrside.c[diff]

1 file changed

tree: 87256c75f333ceed25d4ca08e7617872eeba9ae5