[DGD] nomask and static vs straight
Felix A. Croes
felix at dworkin.nl
Thu Jan 29 15:49:01 CET 2009
Shentino <shentino at gmail.com> wrote:
>[...]
> What I'm curious about is who should bear the burden of access control.
> With a nomask and a stack, my role inheritable guarantees that a simple
> static function supplied by the inheritor will suffice, whereas if I just do
> a straiht call, the inheritor has to bear the burden of allowing the
> appropriate caller, and yet turn away from everyone else.
>
> Any reason I should do one over the other?
It could be a matter of responsibility and security. The _F_hook setup
may protect the consistency of data that cannot be accessed directly by
the inheritor, or that could even be messed up by a maliciously-written
inheritor.
When the responsibility lies with the inheritor, let the inheritor do
the checking.
Regards,
Felix Croes
More information about the DGD
mailing list