[921] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

Re: [linux-security] security idea

daemon@ATHENA.MIT.EDU (Joseph Dickson)
Wed Jul 17 12:18:37 1996

To: "Peter J. Braam" <braam@maths.ox.ac.uk>
In-reply-to: Your message of "Sat, 13 Jul 1996 12:54:02 PDT."
             <Pine.LNX.3.91.960713125339.353A-100000@seal.stelias.com> 
Date: Mon, 15 Jul 1996 22:17:44 -0400
From: Joseph Dickson <merlin@sj-coop.net>
Resent-To: linux-security@tarsier.cv.nrao.edu
Resent-From: Joseph Dickson <merlin@sj-coop.net>

"Peter J. Braam" writes:
: Many security issues would be helped if there was one extra user which
: could su to any other user, but not to uid zero. Let's call this user
: "super".
: 

If we're going to start messing around with a proprietary security design,
let's at least do it right the first time.  Most of the standard unix
security problems have been solved by the ACL/SID based security system,
which is already in development for linux, BTW.  At least other operating
systems already use this, so a departure from the standard unix security
design to this wouldn't put us out by ourselves, anyway.


Cheers,

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
! Joseph Dickson            !  Computer Programmer  !
! merlin@sj-coop.net        !  Network Technician   !
! www.sj-coop.net/~merlin   !  Systems Consultant   !
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

home help back first fref pref prev next nref lref last post