X-Git-Url: http://www.chiark.greenend.org.uk/ucgi/~ian/git?p=userv.git;a=blobdiff_plain;f=spec.html%2Fch-intro.html;h=c74b554d5784f9a05e1b5cf2c169ac7d8e347a3e;hp=e8a9dc345a2d1cc558b7a6769aac9a9e840ab2dd;hb=70d3947fb471e0e12ef89c35f915f6acec217f4a;hpb=3f4f10799993052f55b58c590475b11fe9bcb61d diff --git a/spec.html/ch-intro.html b/spec.html/ch-intro.html index e8a9dc3..c74b554 100644 --- a/spec.html/ch-intro.html +++ b/spec.html/ch-intro.html @@ -1,32 +1,68 @@ -
+ + + + + +
There is a daemon which invokes user service programs (henceforth
`services') in response to requests by callers of a companion client
program (henceforth the `client') and according to rules set forth in
system-wide and user-specific configuration files. The companion
client program is setuid root, and negotiates with the daemon through
-an AF_UNIX socket and associated objects in a system-wide
+an AF_UNIX
socket and associated objects in a system-wide
private directory set aside for the purpose. The user who wishes the
service to be performed and calls the client is called the `calling
user'; the process which calls the client is called the `calling
process'.
-
+
+ +The daemon and the client are responsible for ensuring that information is safely carried across the security boundary between the two users, and that the processes on either side cannot interact with each other in any unexpected ways. +
+ +