socket -> UID
brnstnd at stealth.acf.nyu.edu
brnstnd at stealth.acf.nyu.edu
Wed Jan 17 19:18:51 AEST 1990
In article <1990Jan15.053647.24388 at athena.mit.edu> jik at athena.mit.edu (Jonathan I. Kamens) writes:
> In article <832 at unipas.fmi.uni-passau.de>, hessmann at unipas.fmi.uni-passau.de
> (Georg Hessmann) writes:
> [ How can a program at one end of an Internet socket find out what the ]
> [ UID and GID of the process at the other end of the socket are? ]
You could use an RFC 931 Authentication Server implementation, so that
you can find out the username by asking TCP port 113 on the client machine.
My implementation is undergoing gamma testing.
Unfortunately, it's easy to compromise security below TCP, so if you
really want to know who you're talking to, run Kerberos.
> This can't be done. An Internet domain socket doesn't have any UID or GID
> information associated with it;
It should. The Internet inherited that administrative flaw from the Arpanet.
---Dan
More information about the Comp.unix.wizards
mailing list