Re: Authorization without permanent setuid on helper
Re: Authorization without permanent setuid on helper
- Subject: Re: Authorization without permanent setuid on helper
- From: OL&L Lists <email@hidden>
- Date: Fri, 21 Jan 2005 18:13:58 -0800
I don't agree. Apple's document explains why it uses a hybrid
security model and the reasons why they do things the way they do.
The idea is to maintain ease of use but still maintain the best
possible security while doing so.
You can insulate the end user from the nitty gritties of UNIX and
still maintain security.
Which is what setuid helper tools are designed to do.
Michael
Orbital Launch & Lift, Inc.
http://www.orbitallaunch.com
At 1:08 AM +0000 1/22/05, Finlay Dobbie wrote:
On Fri, 21 Jan 2005 16:36:07 -0800, OL&L Lists
<email@hidden> wrote:
Well, that's like saying people use UNIX and don't understand the
dangers of running as root. If you are ignorant, then you deserve to
get burned. If you are worried about security, then pick up a book on
security and read - and discover that running any UNIX machine as
root is dangerous.
OK, but OS X is designed to be easy to use and to insulate the end
user from the nitty gritties of UNIX. So this argument is kind of
flawed, don't you agree?
-- Finlay
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Cocoa-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden