Changes between Version 7 and Version 8 of PrivilegeSeparation
- Timestamp:
- 03/12/12 13:58:24 (12 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
PrivilegeSeparation
v7 v8 1 = Introduction = 2 3 This article attempts to gather all relevant information about OpenVPN privilege separation into one place. This includes use-cases, requirements, design and implementation details, etc. Currently this is very much work in progress. Please fill in the blanks and fix any errors. 4 1 5 = OpenVPN use-cases = 2 6 … … 68 72 ||OpenVPN GUI||Interactive user|||| 69 73 ||Interactive service||Privileged user||Act as a proxy between OpenVPN GUI and OpenVPN. Handles privileged operations on behalf of OpenVPN.|| 70 ||OpenVPN||Interactive user|| Tunneling.Connect to the interactive service for privileged operations.||74 ||OpenVPN||Interactive user||Connect to the interactive service for privileged operations.|| 71 75 72 76 The interactive service is a new component that allows running privileged operations such changing routes by the unprivileged OpenVPN process. It's essentially a proxy the unprivileged OpenVPN/OpenVPN GUI application uses to do privileged operations. 73 77 74 78 Implementation details: 79 80 * From James Yonan: ''"To be complete, the wrapper must also own the OpenVPN private key -- otherwise the configuration would be copyable by a non-privileged user, something that the enterprise model is determined to prevent. Protecting the private key can be accomplished by storing the key in the system cert/key store, and accessing the key through a Cryptographic Provider API such as Crypto API on Windows, PKCS#11 on Linux, or Keychain on Mac."'' 81 75 82 76 83 == COM+ ==