| # The SafeSetID LSM uses this list to record which UID’s/GID’s to restrict, look here for more information: |
| # https://www.kernel.org/doc/html/latest/admin-guide/LSM/SafeSetID.html |
| |
| # shill spawns dhcpcd as 'dhcp' user |
| 20104:224 |
| # shill spawns logger as 'syslog' user |
| 20104:202 |
| # shill spawns VPN clients as 'vpn' user |
| 20104:20174 |
| # shill spawns tc as 'nobody' user |
| 20104:65534 |
| # We can't allow any of the target UIDs to switch to other UIDs, or |
| # else a compromised shill could switch to one of them and then switch |
| # to any UID on the system. |
| 217:217 |
| 224:224 |
| 202:202 |
| 20174:20174 |
| 65534:65534 |