Date: Mon, 07 Jul 1997 09:46:09 +0100 From: Colman Reilly <careilly@monoid.cs.tcd.ie> To: "Jonathan M. Bresler" <jmb@FreeBSD.ORG>, freebsd-security@FreeBSD.ORG Subject: Re: Security Model/Target for FreeBSD or 4.4? Message-ID: <199707070846.JAA01325@monoid.cs.tcd.ie> In-Reply-To: Message from "Jonathan M. Bresler" dated Sunday at 14:50.
next in thread | raw e-mail | index | archive | help
JMB says: in a nutshell, the security model is "you must have permission to do something". the superuser (aka root: uid 0) is can do anything. command audit trail (logging) is not provided. the holes have been in the implementation of that model. the source shows the implementation. which has been of greatly varying quality regarding security. ;( Sure, that's the thought underlying the security model, sort of, but it fails to catch the whole intended behaviour, and certainly isn't complete enough to help decide whether a piece of code preservses system security or not, which is probably part of the problem. Implementors can't really be sure whether or not their code is secure because it's not entirely obvious what secure means. Colman
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199707070846.JAA01325>