On Thursday 23 March 2006 12:43, Iain MacDonnell wrote:
> What if pcscd was to run as the user instead of as root? If multiple
> users on the same system need to use different readers, they'd each
> have their own pcscd.
You could even have a single pcscd, it would just have to create per-user Unix
domain sockets.
> Of course that'd need changes to pcscd to not try to create a single
> socket in /var/run, and to libpcsclite to find the path to the right
> pcscd for the user.
Finding the right pcscd (if there is more than one) is just a matter of
finding the right socket file. That could be as simple as putting the UID in
the file name. The most important part is that each socket file would need
permissions that prevent any other users from connect()ing to it.
> This is probably a direction we're going to want to go in in the future
> anyway, to support USB card readers connected to Sun Ray thin clients,
> presented to the user session via libusb.
I agree, per-user pcscds would make a lot of sense there.
I've been considering leaving pcscd running as root, but just changing the
permissions on the communications socket when a user logs in -- and probably
restarting pcscd for each login in order to kill all previous connections to
it.
Shawn.
_______________________________________________
Muscle mailing list
[email protected]
http://lists.drizzle.com/mailman/listinfo/muscle
