Title: #21: IFP: expose user and group unique IDs through DBus
On (20/09/16 04:46), Pavel Březina wrote:
>On 09/20/2016 01:13 PM, Jakub Hrozek wrote:
>> The only last thing I'm wondering is if there is any information leak in
>> exposing these information. On one hand, the IFP interface is normally
>> only accessible to root. On the other hand, currently it's
>> all-or-nothing, right? We either publish all information or none...
>AFAIK we use whitelist for user attributes.
that's the problem.
We use whitelist just for *user* attributes and not for group
See the full comment at
sssd-devel mailing list -- firstname.lastname@example.org
To unsubscribe send an email to sssd-devel-le...@lists.fedorahosted.org