Well, maybe. You're suggesting a scheme which has a number
of problems WRT file ownerships and so forth. A system with
a disempowered root (uid 0 not privileged) and a full-up
capability mechanism would be better. Some of the "Trusted"
systems tried changing the ownerships of system files away
from root and found a horrid nest of assumptions in applications.
--Casey Schaufler voice: (650) 933-1634 casey@sgi.com fax: (650) 933-0170
- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/