Re: What's left over.

• Next message: Rusty Russell: "[PATCH] Module rewrite series 4/5: i386 support."
• Previous message: Chris Wedgwood: "Re: What's left over."
• In reply to: Dax Kelson: "Re: What's left over."
• Next in thread: Dax Kelson: "Re: What's left over."
• Reply: Dax Kelson: "Re: What's left over."
• Reply: Pavel Machek: "Re: What's left over."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 30 Oct 2002, Dax Kelson wrote:

> Without ACLs, if Sally, Joe and Bill need rw access to a file/dir, just
> create another group with just those three people in. Over time, of

If Sally, Joe and Bill need rw access to a directory, and Joe and Bill
are using existing userland (any OS I'd seen), then Sally can easily
fuck them into the next month and not in a good way.

_That_ is the real problem. Until that is solved (i.e. until all
userland is written up to the standards allegedly followed in writing
suid-root programs wrt hostile filesystem modifications) NO mechanism
will help you. ACLs, huge groups, whatever - setups with that sort
of access allowed are NOT SUSTAINABLE with the current userland(s).

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

• Next message: Rusty Russell: "[PATCH] Module rewrite series 4/5: i386 support."
• Previous message: Chris Wedgwood: "Re: What's left over."
• In reply to: Dax Kelson: "Re: What's left over."
• Next in thread: Dax Kelson: "Re: What's left over."
• Reply: Dax Kelson: "Re: What's left over."
• Reply: Pavel Machek: "Re: What's left over."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Oct 31 2002 - 22:00:52 EST