Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
0 points
ww520
4y ago
0 comments
Save
Share
TCP server cannot assume the security context of the client, thus privilege elevation attack can easily happen.
0 comments
1 comments · 1 top-level
top
newest
oldest
monocasa
4y ago
More importantly in a lot of cases, you can ask the kernel for the client's SID as the server, and make decisions knowing that the client couldn't forge it.
j
/
k
navigate · click thread line to collapse
