A method for assigning privileges in linux system based on capability mechanism

Abstract

The invention discloses a Linux system privilege distribution method based on a capability mechanism. The Linux system privilege distribution method based on the capability mechanism includes that 1) setting a user role configuration file and a role capability configuration file under a safe mode; 2) marking a privileged application according to the capability needed for the privileged application of the system; enabling a TPM of a server to carry out measurement and write protection on the configuration files and marked privileged application; 3) opening TPM measurement, and entering the system working mode; enabling the TPM to measure and verify the configuration files, after passing the verification, inquiring the configuration files according to a user name to obtain the corresponding role, and reading a capability set included in the role; 4) enabling the PAM to mark the capability of a current program according to the role, when invoking an application, if the application is the privileged application, judging whether the marked capability set of the application is matched with the marked capability set of the program, if so, enabling the program to obtain the capability of the privileged application and carry out the privileged application, otherwise, refusing to carry out. The Linux system privilege distribution method based on the capability mechanism is easy to manage and perform right control.

Description

technical field [0001] The invention relates to the field of authority control of system security, and relates to a method for distributing privileges of a Linux system based on a capability mechanism. Background technique [0002] With the popularity of linux system, the attack and protection of linux system has become the main research content in the field of system security in recent years. The traditional security mechanism of linux is to restrict ordinary users to only hold the most basic permissions and grant all permissions to a privileged user root user, and when ordinary users need to complete privileged operations such as changing the user's own password, linux introduces Set-UID The mechanism enables ordinary users to temporarily obtain root by executing privileged applications (privileged applications refer to programs marked with set-UID bits, and the owner of such programs is the root user. Executing such programs can allow ordinary users to temporarily obtain ...

AI Technical Summary

Problems solved by technology

[0004] However, the capability mechanism has its own limitations, which has led to the fact that in the current Linux ecosystem, the set-UID mechanism is still the mainstream: (1) The allocation and use of the capability mechanism is too complicated. There are 36 capabilities designed in the Linux system, and there will be more in the future. It is likely to continue to increase (for example, the fine-grainedness of the privilege unit CAP_SYS_ADMIN is not enough), users need to clearly know the function and usage of each privilege

Images