Re[2]: macnetworkprog digest, Vol 3 #519 - 8 msgs
Re[2]: macnetworkprog digest, Vol 3 #519 - 8 msgs
- Subject: Re[2]: macnetworkprog digest, Vol 3 #519 - 8 msgs
- From: Lance Drake <email@hidden>
- Date: Fri, 12 Sep 2003 11:50:36 -0600
Thanks for the tip Lance. However, that simply is not going to happen.
One shouldnt need to spend $100 to find out why the security of the OS
is set up a particular way. Security should be open and complete.
Hi Duane,
The Hillegass-book reference which was sent to was not represented as
required reading for how to solve your problem. It appeared you were
asking for information. My assumption was that you found the Apple
docs, quite extensive and complete on their own, to not be providing
you with whatever was the desired answer to your question. If you
choose to not purchase the book, I take no offense. One does not need
to spend $100 to get the important details concerning Authorization.
Information concerning Apple security IS open and complete.
The documentation shows how tools should be self-healing and do
setuid-root on themselves. We find this to be an incorrect methodology
and distracts from the focus of the tool to do it's own work. A
secondary tool should be responsible for dealing with setuid-root.
There are several advantages to this method.
One interesting thing is, if you were to read the Hillegass book,
you'd see how they say the same thing - but then, I can appreciate how
"that simply is not gonna happen".
Best Regards,
Lance
_______________________________________________
macnetworkprog mailing list | email@hidden
Help/Unsubscribe/Archives:
http://www.lists.apple.com/mailman/listinfo/macnetworkprog
Do not post admin requests to the list. They will be ignored.