Date: Mon, 07 Jul 1997 09:46:09 +0100 From: Colman Reilly <careilly@monoid.cs.tcd.ie> To: "Jonathan M. Bresler" <jmb@FreeBSD.ORG>, freebsd-security@FreeBSD.ORG Subject: Re: Security Model/Target for FreeBSD or 4.4? Message-ID: <199707070846.JAA01325@monoid.cs.tcd.ie> In-Reply-To: Message from "Jonathan M. Bresler" dated Sunday at 14:50.
next in thread | raw e-mail | index | archive | help
JMB says:
in a nutshell, the security model is
"you must have permission to do something".
the superuser (aka root: uid 0) is can do anything.
command audit trail (logging) is not provided.
the holes have been in the implementation of that model.
the source shows the implementation. which has been of greatly
varying quality regarding security. ;(
Sure, that's the thought underlying the security model, sort of, but it
fails to catch the whole intended behaviour, and certainly isn't complete
enough to help decide whether a piece of code preservses system security or
not, which is probably part of the problem. Implementors can't really be
sure whether or not their code is secure because it's not entirely obvious
what secure means.
Colman
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199707070846.JAA01325>