From owner-freebsd-hackers Sat Apr 24 1:35:19 1999 Delivered-To: freebsd-hackers@freebsd.org Received: from poboxer.pobox.com (unknown [208.149.16.22]) by hub.freebsd.org (Postfix) with ESMTP id 374F614D17 for ; Sat, 24 Apr 1999 01:35:15 -0700 (PDT) (envelope-from alk@poboxer.pobox.com) Received: (from alk@localhost) by poboxer.pobox.com (8.9.3/8.9.1) id DAA24915; Sat, 24 Apr 1999 03:33:36 -0500 (CDT) (envelope-from alk) From: Anthony Kimball MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Date: Sat, 24 Apr 1999 03:33:36 -0500 (CDT) X-Face: \h9Jg:Cuivl4S*UP-)gO.6O=T]]@ncM*tn4zG);)lk#4|lqEx=*talx?.Gk,dMQU2)ptPC17cpBzm(l'M|H8BUF1&]dDCxZ.c~Wy6-j,^V1E(NtX$FpkkdnJixsJHE95JlhO 5\M3jh'YiO7KPCn0~W`Ro44_TB@&JuuqRqgPL'0/{):7rU-%.*@/>q?1&Ed Reply-To: alk@pobox.com To: jhermes@infoglobe.com Cc: hackers@freebsd.org Subject: signal permissions X-Mailer: VM 6.43 under 20.4 "Emerald" XEmacs Lucid Message-ID: <14113.32330.554950.935946@avalon.east> Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG : > : >Here's a trial balloon: Anyone who can write to an executable file : >should be permitted to signal a derived process. : > : I dunno, I like to keep process space (who it runs as) separate from file : space (how it exists). : Implied permissions from one space being applied to another always reduces : flexibility, right? I don't see how, in this case. It increases practical flexibility. We're not talking about orthogonality. But your criticism suggests another which you left implicit, but which perhaps motivated yours in some fundamental way: Overloading is almost always sucky. Perhaps a flag would be better. I can only think of 6 cases worth implementing: exec'ing/any uid/gid can sighup/sigterm, where any uid can sighup/sigterm == any gid can sighup/sigterm. That takes 3 flag bits to support. Blech. Oh, for capability tickets! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message