thread impersonation
Julian Elischer
julian at freebsd.org
Sun Sep 18 03:10:47 UTC 2011
On 9/17/11 11:51 AM, Gonzalo wrote:
> So, as a imagined, is not possible a thread impersonation on FreeBSD?
>
> 2011/9/17 Tijl Coosemans<tijl at coosemans.org>
I'm not quite sure what you are trying to achieve, and why.
each thread DOES have its own credentials but the kernel/unix spec
defines them to all be the same user..
It MIGHT be possible for a thread spawned before a seteuid() to keep
some of the credentials of the prior ID
but I haven't looked.. Nor do I know how that would be used.. usually
UID tests are made on the PROCESS
credentials and not the thread credentials (which exist for other
reasons).
>> On Monday 12 September 2011 21:31:03 Gonzalo wrote:
>>> I'm new in freeBSD and I'm looking a way to impersonate threads in
>> FreeBSD.
>>> In Linux I did that with setfsuid, but that only work in linux and is not
>>> portable :(
>> There's seteuid(2) or setuid(2) which are portable. They change the uid of
>> the entire process though, not per thread.
>>
>>> I saw that in FreeBSD there is Jails, that could work? Is possible to
>> create
>>> a Jail for every new thread and "impersonate the Jail"? Maybe I'm saying
>>> things without sense :(
>> A jail is a form of virtualisation. It's not related to what you're trying
>> to do. You can read more about jails in the handbook:
>> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/jails-intro.html
>>
> _______________________________________________
> freebsd-threads at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-threads
> To unsubscribe, send any mail to "freebsd-threads-unsubscribe at freebsd.org"
>
More information about the freebsd-threads
mailing list