> The problem is every executable can impersonate the user, Um, what? What do yo... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Karellen on March 22, 2023 \| parent \| context \| favorite \| on: The Unix process API is unreliable and unsafe (202... > The problem is every executable can impersonate the user, Um, what? What do you mean by "impersonate" here? What does a process that does not impersonate the user look like? Do you just mean "executables that run as the user"? When you log in, and a shell is started that runs as you, is that shell impersonating the user? When you execute commands, as yourself, those commands run with your credentials. Because you ran them. Isn't that, like, the point?

dllthomas on March 22, 2023 | [–]

Typically, any program I run has the totality of my (regular user) authority, which may let it do things I did not intend.

Related:

https://en.wikipedia.org/wiki/Ambient_authority

https://en.wikipedia.org/wiki/Confused_deputy_problem

https://en.wikipedia.org/wiki/Object-capability_model

derefr on March 22, 2023 | [–]

> What does a process that does not impersonate the user look like?

A command running inside a virtual machine, maybe?

eru on March 23, 2023 | [–]

Or check out how iOS and Android use permissions.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact