Date: Sat, 15 Jan 2000 16:13:34 +1030 From: Mark Newton <newton@atdot.dotat.org> To: David Pick <D.M.Pick@qmw.ac.uk> Cc: Robert Watson <robert+freebsd@cyrus.watson.org>, freebsd-security@FreeBSD.ORG Subject: Re: Restructuring authorization checks to facilitate new security models Message-ID: <20000115161334.F767@atdot.dotat.org> In-Reply-To: <E1299gy-0005rl-00@xi.css.qmw.ac.uk>; from D.M.Pick@qmw.ac.uk on Fri, Jan 14, 2000 at 04:35:16PM %2B0000 References: <Pine.BSF.3.96.1000113200906.33318B-100000@fledge.watson.org> <E1299gy-0005rl-00@xi.css.qmw.ac.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Jan 14, 2000 at 04:35:16PM +0000, David Pick wrote:
> The subject/object model looks reasonable, but I suspect that some
> operations will turn out to have more than one object operand; for
> example a user/process (subject) mounting (operation) a file system
> (object) at a particular place in the already mounted filesystem
> (second object).
It strikes me that that example represents at least three separate
sequential authorization checks, not a single authorization check which
needs to work on three subjects.
Not to say that other stronger examples mightn't exist, but this
doesn't appear to be one of them.
- mark
--------------------------------------------------------------------
I tried an internal modem, newton@atdot.dotat.org
but it hurt when I walked. Mark Newton
----- Voice: +61-4-1620-2223 ------------- Fax: +61-8-82231777 -----
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000115161334.F767>