Hello Frank,
Am Montag, den 01.10.2012, 15:56 -0400 schrieb Frank Ch. Eigler:
> thomas wrote:
>
> > [...] Would it be possible to run the code that processes the
> > network data without UID and GID 0? [...]
>
> We've started thinking about this problem some time ago, and will
> start working on it shortly. My favorite approach so far is to have
> pmcd run as an unprivileged user, talking to & managing
> differently-privileged PMDA processes as configured (or requested by
> an authenticated remote pmcd user).
This sounds good.
Can you estimate when this new design will be implemented and released?
Even a rough estimation would be very helpful for me. The process of
going to a higher version of a package for our enterprise products
is costly and it would be nice to avoid doing it twice in a short
timeframe.
Thanks,
Thomas
--
Thomas Biege <thomas@xxxxxxx>, Project Manager Security, CSSLP
SUSE LINUX GmbH, GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB
21284 (AG Nürnberg)
--
Wer aufhoert besser werden zu wollen, hoert auf gut zu sein.
-- Marie von Ebner-Eschenbach
signature.asc
Description: This is a digitally signed message part
|