Documentation ¶
Overview ¶
Package checks implements code which checks permissions of socket files to mitigate the possibility of a non-root attacker messing with socketservice communications channel.
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func CheckSocketFile ¶
CheckSocketFile ensures the naming, mode (perms, filetype) and ownership (uid, gid) of a Unix socket match what we create in a Fleetspeak socket service. This gives us some extra security. Note that using os.Lstat here prevents confusing FS with symlink tricks.
If the returned error is a os.IsNotExist, then a Fleetspeak socket didn't exist. This condition may be retriable.
Types ¶
This section is empty.
Click to show internal directories.
Click to hide internal directories.