Re: analysis: securelevels vs securebits with capabilities

DAVID BALAZIC (david.balazic@uni-mb.si)
Wed, 23 Jun 1999 17:04:46 +0100 (MET)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Jeff Merkey: "Re: FENRIS build against 2.2.* kernels"
Previous message: David Lang: "Re: Disk On Chip driver ?"
Maybe in reply to: Domas Mituzas: "analysis: securelevels vs securebits with capabilities"

Domas Mituzas (midom@dammit.lt) wrote :

> SUMMARY (about capabilities)
>
> It may sound non-unix'ish, but it's cool. It may be future of unix
> systems, not only mainframes =] What it needs - a little bit better
> software design (in many applications I found {if (getuid()!=0) DIE("!");}
> so they should be rewritten to check if they are capable to do their job.

IMHO : they should just do what they want and check for errors like
EPERM .

No need for trying to be "smart" and simulate the result that the kernel
will give you anyway ( and it will be correct too :-)

-- David Balazic , student E-mail : 1stein@writeme.com | living in sLOVEnija home page: http://surf.to/stein Computer: Amiga 1200 + Quantum LPS-340AT

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/

Next message: Jeff Merkey: "Re: FENRIS build against 2.2.* kernels"
Previous message: David Lang: "Re: Disk On Chip driver ?"
Maybe in reply to: Domas Mituzas: "analysis: securelevels vs securebits with capabilities"