logoalt Hacker News

yjftsjthsd-htoday at 3:57 AM3 repliesview on HN

> how many binaries are suid binaries while they probably shouldn't be (passwd

I would expect an unprivileged user to be able to change their own password. How else would that work?

Replies

kamtoday at 4:57 AM

Send a message to a socket-activated daemon running as a UID with write access to the password database.

magicalhippotoday at 8:27 AM

> How else would that work?

Windows way is to have a privileged service which the non-privileged user application talks to over sockets or similar.

NekkoDroidtoday at 9:35 AM

systemd-homed stores most of the user specific information in the home directory `~/.identity`, but since the file contents have to be signed the changes need to be done though a daemon, which is talked to via IPC (homectl does the talking to systemd-homed).