Re: Proposal "LUID"

• Next message: Rick van Rein: "Re: FunKey: Discussion topic"
• Previous message: Maciej W. Rozycki: "RE: NexGen detection"
• In reply to: Rik van Riel: "Re: Proposal "LUID""
• Next in thread: Rik van Riel: "Re: Proposal "LUID""
• Reply: Rik van Riel: "Re: Proposal "LUID""
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

-----BEGIN PGP SIGNED MESSAGE-----

It is rumored that on 17-Apr-2000 Rik van Riel wrote:
> On Sun, 16 Apr 2000 allbery@kf8nh.apk.net wrote:
>
>> (Hint: luids are required by CCAP/C2 security *standards* for
>> "trusted Unix". They aren't something Linux developers can rewrite to
>> their own tastes; Linux will not be usable in CCAP/C2-compliant
>> environments if the kernel doesn't track LUIDs as defined by CCAP/C2.)
>
> So instead of chosing for security you'll be chosing for a
> piece of paper?
>
> I'd chose security over a piece of paper any day. I'm willing
> to integrate sensible things from CCAP/C2, but I haven't seen
> any convincing argument for LUID yet...

1. su to root, sudoers, etc at an increased security level should be permitted
based on luid. Thus chain compromises based on sniffed keyboard become harder.

2. if luid and setluid privileges are implemented tracking quotas becomes much
easier and more consistant.

3. The most important and elementary application which exists in almost all
luid systems I 've seen is the privilege to daemonize to depend on luid. This
is a very effective way to keep track of run-away stuff on a busy system.

Just 3 should be ebough to justify luid (who hasn't had to walk around and kill
users (or his/her own) runaway netscapes lately ;-)

[snip]

- ----------------------------------
Anton R. Ivanov
IP Engineer Level3 Communications
RIPE: ARI2-RIPE E-Mail: Anton Ivanov <aivanov@eu.level3.net>
@*** Modell's Laws ***
      1) Nothing is so serious that it can't be teased
         until it is ragged at the edges.
      3) Nothing is so simple that it cannot be made
         too complex to work.

- ----------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.0 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iQEVAwUBOPr6mSlWAw/bM84zAQHydQf/RU0uMATWbqKLrThnpDmyeBs++z6iOXL6
b7p/kFUNnOSIJulTLSM+wcMRJQ35JOhChXh2nUMOC3xzf9jL9qo2TpO9EKPd5ID6
j1+Nk12SQDuigoemglgGV1hNfAfZTG6CglfV7+1dxM0bQKlDyulpUWP71De0ThrQ
mwLFGOJHsQMticQ7Ww3qeX5QL2Ew4VFv7IEen01a3asZBbkZNtOJdyqDanR/2C23
bgW4A8omw8g6DovbmZvsJ1l9acd/Fk+GOcPFI0vohTERBQfc/eaI1nV1z4sMysaQ
D7pB9U651AYD9kc9Yk3JsTrMniwA1QtRssKigEsVIVRkI0q0c3MKzg==
=GHOP
-----END PGP SIGNATURE-----

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

• Next message: Rick van Rein: "Re: FunKey: Discussion topic"
• Previous message: Maciej W. Rozycki: "RE: NexGen detection"
• In reply to: Rik van Riel: "Re: Proposal "LUID""
• Next in thread: Rik van Riel: "Re: Proposal "LUID""
• Reply: Rik van Riel: "Re: Proposal "LUID""
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sun Apr 23 2000 - 21:00:10 EST