3. Currently, the program described in this chapter is to have setuid-to-root pr

Question

3.      Currently, the program described in this chapter is to have setuid-to-root privileges. Someone observed that it could be equally well implemented as a server in which case the program would authenticate the user, connect to the server, send the command and role, and then let the server execute the command.

A.     What are the advantages of using the server approach rather than the single program approach?

B.     If the server responds only to clients on the local machine, using interprocess communication mechanisms on the local system, which approach would you use? Why?

C.     If the server were listening for commands from the network, would that change your answer to part(b)? Why or why not?

D.     If the client send the password to the server, and the server authenticated, would your answer to any of the previous parts change? Why or why not?

Explanation / Answer

A. Client Server approach provides secure storage, proper management and backup & recover facility rather than single program approach

B. I will use message passing mechanism if the server responds only client on local machines.

C. Socket mechanism is good for listnening from network .I will help to create communication points by identifing Ip address of client machines

D. If the client send the password to the server, and the server authenticated, i will prefer socket mechanism .

Related Questions

Navigate

• Browse (All)
• Browse 3
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.