[921] in linux-security and linux-alert archive
Re: [linux-security] security idea
daemon@ATHENA.MIT.EDU (Joseph Dickson)
Wed Jul 17 12:18:37 1996
To: "Peter J. Braam" <braam@maths.ox.ac.uk>
In-reply-to: Your message of "Sat, 13 Jul 1996 12:54:02 PDT."
<Pine.LNX.3.91.960713125339.353A-100000@seal.stelias.com>
Date: Mon, 15 Jul 1996 22:17:44 -0400
From: Joseph Dickson <merlin@sj-coop.net>
Resent-To: linux-security@tarsier.cv.nrao.edu
Resent-From: Joseph Dickson <merlin@sj-coop.net>
"Peter J. Braam" writes:
: Many security issues would be helped if there was one extra user which
: could su to any other user, but not to uid zero. Let's call this user
: "super".
:
If we're going to start messing around with a proprietary security design,
let's at least do it right the first time. Most of the standard unix
security problems have been solved by the ACL/SID based security system,
which is already in development for linux, BTW. At least other operating
systems already use this, so a departure from the standard unix security
design to this wouldn't put us out by ourselves, anyway.
Cheers,
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
! Joseph Dickson ! Computer Programmer !
! merlin@sj-coop.net ! Network Technician !
! www.sj-coop.net/~merlin ! Systems Consultant !
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-