From owner-freebsd-questions@FreeBSD.ORG Mon Nov 13 16:34:36 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E715816A47E for ; Mon, 13 Nov 2006 16:34:36 +0000 (UTC) (envelope-from bc979@lafn.org) Received: from zoot.lafn.org (zoot.lafn.ORG [206.117.18.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id EEEB043DC7 for ; Mon, 13 Nov 2006 16:33:31 +0000 (GMT) (envelope-from bc979@lafn.org) Received: from [10.0.1.2] (pool-71-109-167-24.lsanca.dsl-w.verizon.net [71.109.167.24]) (authenticated bits=0) by zoot.lafn.org (8.13.6/8.13.4) with ESMTP id kADGXE5M028284 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO); Mon, 13 Nov 2006 08:33:15 -0800 (PST) (envelope-from bc979@lafn.org) In-Reply-To: <004001c70706$0d571ec0$3c01a8c0@coolf89ea26645> References: <454E9F7B.5010105@outstep.com> <454EB6D6.3030807@infowest.com><454EBEEC.1060002@u.washington.edu> <454F210C.9000602@outstep.com> <004001c70706$0d571ec0$3c01a8c0@coolf89ea26645> Mime-Version: 1.0 (Apple Message framework v752.3) X-Priority: 3 Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed Message-Id: <529FD995-BE06-4B47-A22A-9885213D024E@lafn.org> Content-Transfer-Encoding: 7bit From: Doug Hardie Date: Mon, 13 Nov 2006 08:33:13 -0800 To: Ted Mittelstaedt X-Mailer: Apple Mail (2.752.3) X-Virus-Scanned: ClamAV 0.88/2190/Mon Nov 13 01:31:57 2006 on zoot.lafn.org X-Virus-Status: Clean Cc: freebsd-questions Subject: Re: MAC OS X connection to FreeBSD? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 13 Nov 2006 16:34:37 -0000 On Nov 13, 2006, at 01:28, Ted Mittelstaedt wrote: > Apple also doesen't use the UNIX security model. As near as I can > tell their core security model is an ACL model not a user/group model. > Once again this is something that's handled elsewhere. The user-group security model is alive and the heart of OS-X security. It is used throughout the system even within the user's home directory where there are files the user cannot access. This causes problems for backup progrms that want to be run by the user with a window interface as they can't backup those files. ACLs are available but not used by default. The user has to create them if desired. There used to be a FreeBSD project to add ACLs but I don't know its status. i suspect the two implementations will be very similar.