URL:
https://github.com/SSSD/sssd/pull/21
Title: #21: IFP: expose user and group unique IDs through DBus
lslebodn commented:
"""
On (20/09/16 04:46), Pavel Březina wrote:
On 09/20/2016 01:13 PM, Jakub Hrozek wrote:
> The only last thing I'm wondering is if there is any information leak in
> exposing these information. On one hand, the IFP interface is normally
> only accessible to root. On the other hand, currently it's
> all-or-nothing, right? We either publish all information or none...
AFAIK we use whitelist for user attributes.
that's the problem.
We use whitelist just for *user* attributes and not for group
attributes.
LS
"""
See the full comment at
https://github.com/SSSD/sssd/pull/21#issuecomment-248278808