[4776] in WWW Security List Archive
Re: Why do you think you can trust PC software? (was Re: Latest Java hole is Netscape/Sun only)
daemon@ATHENA.MIT.EDU (Jacob Rose)
Tue Mar 11 23:36:43 1997
Date: Tue, 11 Mar 1997 21:24:56 -0500 (EST)
From: Jacob Rose <jacob@whiteshell.com>
To: Bob Denny <rdenny@dc3.com>
Cc: Jay Heiser <Jay@homecom.com>, WWW-SECURITY@ns2.rutgers.edu
In-Reply-To: <9703110940.ZM1352@solo.dc3.com>
Errors-To: owner-www-security@ns2.rutgers.edu
Bob Denny said:
> > That being the case, doesn't it just turn the issue around and scream,
> > "Hey! *All* programs should be running in appropriately sized sandboxes,
> > with access only to that functionality which they should rightfully need."
>
> They do. It's called an operating system. The assertion is your login, the
> capabilities you get depend on who you are and what the system admins grant
> you.
Used a PC OS lately, Bob? =) They don't much have such things. I should've
specified specifically that I was talking about PCs, where access
permissions are "the attrib thing, right?"
------------------------------------------------------------------------
Jacob Rose All you and I must agree upon is peace.
------------------------------------------------------------------------
