Re: Capabilities done right [diff against 2.3.1]

Lars Marowsky-Bree (lmb@teuto.net)
Sun, 16 May 1999 20:42:00 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Alexander Viro: "Re: VFAT rename"
Previous message: Joel Klecker: "Re: EFS in 2.3.2 ???"
In reply to: Albert D. Cahalan: "Re: Capabilities done right [diff against 2.3.1]"
Next in thread: Zygo Blaxell: "Re: Capabilities done right [diff against 2.3.1]"

On 1999-05-16T02:25:56,
"Albert D. Cahalan" <acahalan@cs.uml.edu> said:

> You want to allow shellscripts with special powers?!?!?
>
> If so, you might as well start by allowing setuid shell scripts.
> That was a massive security hole last I heard.

Exactly because it is such a security leak, it might be very useful to only
allow a _very_ specific subset of capabilities for a specific shell script
instead of making it setuid 0. Your analogy is seriously flawed, thats the
exact situation where capabilites are useful.

> Considering other formats: a.out is obsolete and newer formats will
> not be less powerful than ELF.

Probably not.

Sincerely,
Lars Marowsky-Brée

-- Lars Marowsky-Brée Network Management

teuto.net Netzdienste GmbH - DPN Verbund-Partner

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/

Next message: Alexander Viro: "Re: VFAT rename"
Previous message: Joel Klecker: "Re: EFS in 2.3.2 ???"
In reply to: Albert D. Cahalan: "Re: Capabilities done right [diff against 2.3.1]"
Next in thread: Zygo Blaxell: "Re: Capabilities done right [diff against 2.3.1]"