On Thu, 18 May 2000, David Ford wrote:
> > The right way to do GUI with "priviledged operations is to make an
> > underlying utility that does the legwork from the commandline, and
> > provide an easy GUI interface frontend.
>
> How about writing code properly in the first place instead of a calling b
> calling c ... and on and on.
>
> The right way to do anything priviledged or not, is "the right way", not
> wrapping and offloading. Write code so you'll never worry about priviledged
> access.
This is off-topic for Linux kernel. However, I've been baited into
responding because Rogier is correct.
"Wrapping and offloading", as you put it, enables the amount of privileged
(trusted) code to be very small, and hence able to be verified as secure
with high confidence. It also enables the code to be shared. Please
observe (on a RedHat system) /sbin/pwdb_chkpwd, or /usr/sbin/utempter.
However, you obviously have a strong desire to audit libgnome, libgtk,
libX11, libXext, libICE, libgnomeui, etc. etc. I expect your exhaustive
report in... oh, a year? And I guarantee you will have missed holes.
Cheers
Chris
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Tue May 23 2000 - 21:00:16 EST