File: SECURITY

package info (click to toggle)
pcsc-lite 1.8.4-1+deb7u1
  • links: PTS, VCS
  • area: main
  • in suites: wheezy
  • size: 3,472 kB
  • sloc: ansic: 13,182; sh: 11,636; python: 720; lex: 552; makefile: 203
file content (16 lines) | stat: -rw-r--r-- 586 bytes parent folder | download | duplicates (8)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
SECURITY

This file discusses security related issues with pcsc-lite and how to
handle them.

Sometimes it is dangerous to run daemons under a root account.  If there is
a chance to exploit a buffer overflow you can protect sensitive information
by running it under a different account. It might be useful to create another
user with hardware priveledges and run pcscd as that user.  Be sure this user
can manipulate the server sockets.


Application suggestions:

Make sure you Disconnect when you are not using the reader.  Also be sure to
ReleaseContext before exiting your program.