[DGD] Access
Felix A. Croes
felix at dworkin.nl
Thu Aug 9 13:46:40 CEST 2001
pete at ana.sk wrote:
> > In the kernel library, objects don't have access outside their own
> > /usr/Foo directory, even though user Foo may have that access. This
> > is intended to prevent security leaks such as the above; if objects
> > in /usr/World have write access in /usr/System, then effectively
> > objects in /usr/World can do anything at all.
>
> But can you explain me then what is the whole access and grant
> good for? When i cant grant access for user X to dir /usr/Y, when is
> that grant used?
You can grant access to user X for /usr/Y, as long as this is handled
through a command interpreter that inherits /kernel/lib/wiztool. But
you cannot grant such access to the objects made by user X.
Regards,
Dworkin
_________________________________________________________________
List config page: http://list.imaginary.com/mailman/listinfo/dgd
More information about the DGD
mailing list