X-Git-Url: http://www.chiark.greenend.org.uk/ucgi/~ian/git?p=userv.git;a=blobdiff_plain;f=spec.html%2Fch-intro.html;h=220d640be4ad31e29d6e1ceeccda910d154db87d;hp=aa5860b55bcd8f23827f7945dbd92d761bfc1df7;hb=ae541decab234d800211990e9f077b1aada92d06;hpb=bf70bf4bd61f77133984b7bb84d2ada358333796 diff --git a/spec.html/ch-intro.html b/spec.html/ch-intro.html index aa5860b..220d640 100644 --- a/spec.html/ch-intro.html +++ b/spec.html/ch-intro.html @@ -1,32 +1,68 @@ -
+ + + + + +
There is a daemon which invokes user service programs (henceforth
`services') in response to requests by callers of a companion client
program (henceforth the `client') and according to rules set forth in
system-wide and user-specific configuration files. The companion
client program is setuid root, and negotiates with the daemon through
-an AF_UNIX socket and associated objects in a system-wide
+an AF_UNIX
socket and associated objects in a system-wide
private directory set aside for the purpose. The user who wishes the
service to be performed and calls the client is called the `calling
user'; the process which calls the client is called the `calling
process'.
-
+
+ +The daemon and the client are responsible for ensuring that information is safely carried across the security boundary between the two users, and that the processes on either side cannot interact with each other in any unexpected ways. +
+ +