Plan 9 authentication in Linux

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

Plan 9 authentication in Linux

Full text

Pdf (1.08 MB)

Source

ACM SIGOPS Operating Systems Review archive
Volume 42 , Issue 5 (July 2008) table of contents
Research and developments in the Linux kernel

Pages 27-33

Year of Publication: 2008

ISSN:0163-5980

Author

Ashwin Ganti

Google Inc.

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 21, Downloads (12 Months): 418, Citation Count: 0

Additional Information:

abstract references index terms

Tools and Actions:	Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/1400097.1400101 What is a DOI?

Warning: The download time has expired please click on the item to try again.

ABSTRACT

In Linux, applications like su and login currently run as root in order to access authentication information and set or alter the identity of the process. In such cases, if the application is compromised while running as a privileged user, the entire system can become vulnerable. An alternative approach is taken by the Plan 9 operating system from Bell Labs, which runs such applications as a non-privileged user and relies on a kernel-based capability device working in coordination with an authentication server to provide the same services. This avoids the risk of an application vulnerability becoming a system vulnerability.

This paper discusses the extension of Linux authentication mechanisms to allow the use of the Plan 9 approach with existing Linux applications in order to reduce the security risks mentioned earlier. It describes the port of the Plan 9 capability device as a character device driver for the Linux kernel. It also describes the port of the Plan 9 authentication server and the implementation of a PAM module which allows the use of these new facilities. It is now possible to restrain processes like login and su from the uncontrolled setuid bit and make them run on behalf of an unprivileged user in Linux.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Implementation code url. http://code.google.com/p/p9authlinux/source/browse.
	2	Linux-pam. http://www.kernel.org/pub/linux/libs/pam.
	3	Security enhanced linux. http://www.nsa.gov/selinux/.
	4	Jeffrey L. Berger , Jeffrey Picciotto , John P. L. Woodward , Paul T. Cummings, Compartmented Mode Workstation: Prototype Highlights, IEEE Transactions on Software Engineering, v.16 n.6, p.608-618, June 1990 [doi>10.1109/32.55089]
	5	D. Bernstein. Qmail. http://cr.yp.to/qmail.html.
	6	R. Cox. Plan 9 from user space. http://swtch.com/plan9port.
	7	Russ Cox , Eric Grosse , Rob Pike , David L. Presotto , Sean Quinlan, Security in Plan 9, Proceedings of the 11th USENIX Security Symposium, p.3-16, August 05-09, 2002
	8	R. Pike, D. Presotto, S. Dorward, B. Flandrena, K. Thompson, H. Trickey, and P. Winterbottom. Plan 9 from Bell Labs. Computing Systems, 8(3):221--254, Summer 1995.
	9	Niels Provos , Markus Friedl , Peter Honeyman, Preventing privilege escalation, Proceedings of the 12th conference on USENIX Security Symposium, p.16-16, August 04-08, 2003, Washington, DC
	10	Vipin Samar, Unified login with pluggable authentication modules (PAM), Proceedings of the 3rd ACM conference on Computer and communications security, p.1-10, March 14-15, 1996, New Delhi, India [doi>10.1145/238168.238177]
	11	Tatu Ylönen, SSH: secure login connections over the internet, Proceedings of the 6th conference on USENIX Security Symposium, Focusing on Applications of Cryptography, p.4-4, July 22-25, 1996, San Jose, California