On Tue, Aug 20, 2002 at 05:28:12PM +0200, Robert Millan wrote: > On Tue, Aug 20, 2002 at 03:15:22AM +0200, Marcus Brinkmann wrote: >> On Tue, Aug 20, 2002 at 03:15:49AM +0200, Robert Millan wrote:
>>> Do we have file permission bits for the unauthentificated user? >> Yes. And a bit to control if it should use those or the o bits. > Well i think we can reach something much more secure than the "all or nothing" > unix traditional approach, too. > Let's say i want to set a public console for html browsing; on the > GNU system the browser could be set as the only application the > guest user can execute. > But to get it really flexible this would need a large permission > table, though, where each file has a permission set for owner, each > user and each group. I don't know if this is scalable. Isn't that (functionally) the idea behind ACL's, while they tend to be implemented as just that: lists, and not a big table? -- Lionel
pgpMYYsQnh89z.pgp
Description: PGP signature