[DGD]Default Wiztool not loaded ?
Stephen Schmidt
schmidsj at union.edu
Sun Feb 18 03:48:19 CET 2001
Dworkin wrote:
> >There is a peculiarity in the /cmds model which I was anxious to
> >avoid: the commands are not just in separate files, but they are
> >even in separate instantiated <objects>. This has led to a near-
> >endless stream of security problems.
Could you say a little bit about what those problems
are? I presume that it has to do with bad objects calling
functions in the command objects; but doesn't a check to
make sure that previous_program() is user.c (or player.c
in the Melville nomenclature) solve most of them? Or is
there something else going on?
On Sun, 18 Feb 2001, Tim Vernum wrote:
> The reverse is also true.
> If you put all commands into a small number of objects, and then
> need to allow command X high privileges, you usually end up
> giving it to command Y.
> Which means your command objects need to have the highest level
> of security, and you can let anyone other than your most trusted
> developers touch them.
>
> What's wrong with
> /cmds/secure/
> /cmds/general/
> (or some other organisational structure)?
TMI-2 has a /cmds/file for all the file writing commands,
and those are generally the ones that need mega-permissions.
TMI-2 did not distinguish between the permissions given in
/cmds/file and other commands, but you certainly could
change it to do so quickly.
Steve
List config page: http://list.imaginary.com/mailman/listinfo/dgd
More information about the DGD
mailing list