From: Kent Yoder <shpedoikal@gm...> - 2006-06-14 21:53:14
After reviewing the TSS 1.1 and 1.2 specs, I believe that the
current implementation of trousers' user persistent storage goes
against the idea that the specs express. Instead of a process scope,
the user PS should really have the OS user's scope, persisting across
processes. This would be much more useful than the current
implementation, and I can't find anything in either spec that
contradicts this. (Thanks to Thomas Winkler for pointing this out).
So, my current thinking is that the user PS will be kept in a file
such as ~/.trousers/user.data. ~ will be determined by grepping
getpwent() for the current effective UID. I'll also put in support
for storing user ps data in a location pointed to by an environment
variable of some kind.
IBM LTC Security Dev.