{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:37:08Z","timestamp":1750307828097,"version":"3.41.0"},"reference-count":11,"publisher":"Association for Computing Machinery (ACM)","issue":"5","license":[{"start":{"date-parts":[[2008,7,1]],"date-time":"2008-07-01T00:00:00Z","timestamp":1214870400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","award":["6.28E+12"],"award-info":[{"award-number":["6.28E+12"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["SIGOPS Oper. Syst. Rev."],"published-print":{"date-parts":[[2008,7]]},"abstract":"<jats:p>In Linux, applications like su and login currently run as root in order to access authentication information and set or alter the identity of the process. In such cases, if the application is compromised while running as a privileged user, the entire system can become vulnerable. An alternative approach is taken by the Plan 9 operating system from Bell Labs, which runs such applications as a non-privileged user and relies on a kernel-based capability device working in coordination with an authentication server to provide the same services. This avoids the risk of an application vulnerability becoming a system vulnerability.<\/jats:p>\n          <jats:p>\n            This paper discusses the extension of Linux authentication mechanisms to allow the use of the Plan 9 approach with existing Linux applications in order to reduce the security risks mentioned earlier. It describes the port of the Plan 9 capability device as a character device driver for the Linux kernel. It also describes the port of the Plan 9 authentication server and the implementation of a PAM module which allows the use of these new facilities.\n            <jats:italic>It is now possible to restrain processes like login and su from the uncontrolled setuid bit and make them run on behalf of an unprivileged user in Linux<\/jats:italic>\n            .\n          <\/jats:p>","DOI":"10.1145\/1400097.1400101","type":"journal-article","created":{"date-parts":[[2008,8,12]],"date-time":"2008-08-12T13:10:22Z","timestamp":1218546622000},"page":"27-33","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["Plan 9 authentication in Linux"],"prefix":"10.1145","volume":"42","author":[{"given":"Ashwin","family":"Ganti","sequence":"first","affiliation":[{"name":"Google Inc."}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2008,7]]},"reference":[{"key":"e_1_2_1_1_1","unstructured":"Implementation code url. http:\/\/code.google.com\/p\/p9authlinux\/source\/browse.  Implementation code url. http:\/\/code.google.com\/p\/p9authlinux\/source\/browse."},{"key":"e_1_2_1_2_1","unstructured":"Linux-pam. http:\/\/www.kernel.org\/pub\/linux\/libs\/pam.  Linux-pam. http:\/\/www.kernel.org\/pub\/linux\/libs\/pam."},{"key":"e_1_2_1_3_1","unstructured":"Security enhanced linux. http:\/\/www.nsa.gov\/selinux\/.  Security enhanced linux. http:\/\/www.nsa.gov\/selinux\/."},{"key":"e_1_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1109\/32.55089"},{"key":"e_1_2_1_5_1","unstructured":"D. Bernstein. Qmail. http:\/\/cr.yp.to\/qmail.html.  D. Bernstein. Qmail. http:\/\/cr.yp.to\/qmail.html."},{"key":"e_1_2_1_6_1","unstructured":"R. Cox. Plan 9 from user space. http:\/\/swtch.com\/plan9port.  R. Cox. Plan 9 from user space. http:\/\/swtch.com\/plan9port."},{"key":"e_1_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.5555\/647253.720295"},{"issue":"3","key":"e_1_2_1_8_1","first-page":"221","article-title":"Plan 9 from Bell Labs","volume":"8","author":"Pike R.","year":"1995","journal-title":"Computing Systems"},{"volume-title":"12th USENIX Security Symposium","year":"2002","author":"Provos N.","key":"e_1_2_1_9_1"},{"key":"e_1_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/238168.238177"},{"volume-title":"Proceedings of the 6th Security Symposium) (USENIX Association: Berkeley, CA):37","year":"1996","author":"Ylonen T.","key":"e_1_2_1_11_1"}],"container-title":["ACM SIGOPS Operating Systems Review"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1400097.1400101","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1400097.1400101","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T13:57:53Z","timestamp":1750255073000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1400097.1400101"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2008,7]]},"references-count":11,"journal-issue":{"issue":"5","published-print":{"date-parts":[[2008,7]]}},"alternative-id":["10.1145\/1400097.1400101"],"URL":"https:\/\/doi.org\/10.1145\/1400097.1400101","relation":{},"ISSN":["0163-5980"],"issn-type":[{"type":"print","value":"0163-5980"}],"subject":[],"published":{"date-parts":[[2008,7]]},"assertion":[{"value":"2008-07-01","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}