|
|
|
|
|
|
by blendergeek
2282 days ago
|
|
|
I'm a little confused here. The author compares S-Cache to 'sudo'. 'sudo' is a command that lets an unprivileged user run a privileged command. S-Cache lets a process access a secret without having to manage it. The process (in a sense) is not _privileged_ enough to see the secret but rather delegates this to S-Cache.
The author (as far as I can tell) does not mention the shadow passwords file. Can you explain more? |
|
|
> S-Cache is an SUID-root executable that works by storing the secret in a file that is owned by root and only readable by root. Its security is thus comparable to the security of shadow passwords.