| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <46C2AFEC.1000309@cubic.ch> Date: Wed, 15 Aug 2007 09:49:00 +0200 From: Tim Tassonis <timtas@...ic.ch> To: LKML <linux-kernel@...r.kernel.org> Subject: Re: Thinking outside the box on file systems > The ACLs that were added to Linux were a step in the > right direction but very incomplete. What should be is > a complex permission system that would allow fine > grained permissions and inherentance masks to control > what permission are granted when someone moves new > files into a directory. Instead of just root and users > there would be mid level roles where users and objects > had management authority over parts of the system and > the roles can be defined in a very flexible way. For > example, rights might change during "business hours". The problem with complex permission systems is, well, they are complex... I'd still go for the UNIX KISS philosophy and the rather easy permission system, as it is easier to manage. Windows has all that great permission stuff, but if you look at the reality, hardly anybody uses it due to its complexity. Tim - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists