2d257cc pac responder: limit access by checking UIDs

10 files Authored by sbose 10 years ago, Committed by sgallagh 10 years ago,
    pac responder: limit access by checking UIDs
    
    A check for allowed UIDs is added in the common responder code directly
    after accept(). If the platform does not support reading the UID of the
    peer but allowed UIDs are configured, access is denied.
    
    Currently only the PAC responder sets the allowed UIDs for a socket. The
    default is that only root is allowed to access the socket of the PAC
    responder.
    
    Fixes: https://fedorahosted.org/sssd/ticket/1382
    
        
file modified
+16 -1
file modified
+1 -0
file modified
+4 -2
file modified
+4 -0
file modified
+27 -4
file modified
+19 -0