Will “filesystem user ID†always be used instead of the “effective user ID�
Clash Royale CLAN TAG#URR8PPP
up vote
1
down vote
favorite
The documentation for setfsuid() says:
Normally, the value of the filesystem user
ID will shadow the value of the effective user ID.
Does "shadow the value" means that the value of the filesystem user ID will be used instead of the effective user ID?
If this is what it means, why did they say "Normally", is there a situation where the effective user ID will be used instead of the filesystem user ID?
Note that they also say the same thing for the filesystem group ID and the effective group ID in the setfsgid() documentation:
Normally, the value of the filesystem
group ID will shadow the value of the effective group ID.
linux permissions process
asked Dec 5 '17 at 21:00
user7681202
237414
add a comment |Â
up vote
1
down vote
favorite
The documentation for setfsuid() says:
Normally, the value of the filesystem user
ID will shadow the value of the effective user ID.
Does "shadow the value" means that the value of the filesystem user ID will be used instead of the effective user ID?
If this is what it means, why did they say "Normally", is there a situation where the effective user ID will be used instead of the filesystem user ID?
Note that they also say the same thing for the filesystem group ID and the effective group ID in the setfsgid() documentation:
Normally, the value of the filesystem
group ID will shadow the value of the effective group ID.
linux permissions process
asked Dec 5 '17 at 21:00
user7681202
237414
add a comment |Â
up vote
1
down vote
favorite
up vote
1
down vote
favorite
The documentation for setfsuid() says:
Normally, the value of the filesystem user
ID will shadow the value of the effective user ID.
Does "shadow the value" means that the value of the filesystem user ID will be used instead of the effective user ID?
If this is what it means, why did they say "Normally", is there a situation where the effective user ID will be used instead of the filesystem user ID?
Note that they also say the same thing for the filesystem group ID and the effective group ID in the setfsgid() documentation:
Normally, the value of the filesystem
group ID will shadow the value of the effective group ID.
linux permissions process
asked Dec 5 '17 at 21:00
user7681202
237414
The documentation for setfsuid() says:
Normally, the value of the filesystem user
ID will shadow the value of the effective user ID.
Does "shadow the value" means that the value of the filesystem user ID will be used instead of the effective user ID?
If this is what it means, why did they say "Normally", is there a situation where the effective user ID will be used instead of the filesystem user ID?
Note that they also say the same thing for the filesystem group ID and the effective group ID in the setfsgid() documentation:
Normally, the value of the filesystem
group ID will shadow the value of the effective group ID.
linux permissions process
asked Dec 5 '17 at 21:00
user7681202
237414
asked Dec 5 '17 at 21:00
user7681202
237414
asked Dec 5 '17 at 21:00
user7681202
237414
asked Dec 5 '17 at 21:00
user7681202
237414
237414
add a comment |Â
add a comment |Â
1 Answer
1
active
oldest
votes
up vote
1
down vote
accepted
The part about shadowing refers to the following sentence:
In fact, whenever
the effective user ID is changed, the filesystem user ID will also be
changed to the new value of the effective user ID.
So, since usually programs don't change the FSUID (or even know about it!), it's always going to be the same as the EUID. The exception being programs that explicitly know to change it directly.
The FSUID is used for filesystem accesses, the EUID for other things. The rationale is there in the man page: the FSUID existed originally so that a file server could act on behalf of some regular user, but could not be affected by that same user via signals.
answered Dec 5 '17 at 21:45
ilkkachu
50.1k676138
add a comment |Â
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
up vote
1
down vote
accepted
The part about shadowing refers to the following sentence:
In fact, whenever
the effective user ID is changed, the filesystem user ID will also be
changed to the new value of the effective user ID.
So, since usually programs don't change the FSUID (or even know about it!), it's always going to be the same as the EUID. The exception being programs that explicitly know to change it directly.
The FSUID is used for filesystem accesses, the EUID for other things. The rationale is there in the man page: the FSUID existed originally so that a file server could act on behalf of some regular user, but could not be affected by that same user via signals.
answered Dec 5 '17 at 21:45
ilkkachu
50.1k676138
add a comment |Â
up vote
1
down vote
accepted
The part about shadowing refers to the following sentence:
In fact, whenever
the effective user ID is changed, the filesystem user ID will also be
changed to the new value of the effective user ID.
So, since usually programs don't change the FSUID (or even know about it!), it's always going to be the same as the EUID. The exception being programs that explicitly know to change it directly.
The FSUID is used for filesystem accesses, the EUID for other things. The rationale is there in the man page: the FSUID existed originally so that a file server could act on behalf of some regular user, but could not be affected by that same user via signals.
answered Dec 5 '17 at 21:45
ilkkachu
50.1k676138
add a comment |Â
up vote
1
down vote
accepted
up vote
1
down vote
accepted
The part about shadowing refers to the following sentence:
In fact, whenever
the effective user ID is changed, the filesystem user ID will also be
changed to the new value of the effective user ID.
So, since usually programs don't change the FSUID (or even know about it!), it's always going to be the same as the EUID. The exception being programs that explicitly know to change it directly.
The FSUID is used for filesystem accesses, the EUID for other things. The rationale is there in the man page: the FSUID existed originally so that a file server could act on behalf of some regular user, but could not be affected by that same user via signals.
answered Dec 5 '17 at 21:45
ilkkachu
50.1k676138
The part about shadowing refers to the following sentence:
In fact, whenever
the effective user ID is changed, the filesystem user ID will also be
changed to the new value of the effective user ID.
So, since usually programs don't change the FSUID (or even know about it!), it's always going to be the same as the EUID. The exception being programs that explicitly know to change it directly.
The FSUID is used for filesystem accesses, the EUID for other things. The rationale is there in the man page: the FSUID existed originally so that a file server could act on behalf of some regular user, but could not be affected by that same user via signals.
answered Dec 5 '17 at 21:45
ilkkachu
50.1k676138
answered Dec 5 '17 at 21:45
ilkkachu
50.1k676138
answered Dec 5 '17 at 21:45
ilkkachu
50.1k676138
answered Dec 5 '17 at 21:45
ilkkachu
50.1k676138
50.1k676138
add a comment |Â
add a comment |Â
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f409034%2fwill-filesystem-user-id-always-be-used-instead-of-the-effective-user-id%23new-answer', 'question_page');
);
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
