> All the certifications in the world do no good if the > security system > is configured to hand out root privileges lightly.
I completely agree, imagine a scenario where an opensource project repository has been compromised, and the Makefile for example changes some files in /etc with "pfexec" and the user would never even notice it. As cool as RBAC may be, considering that the default privilege for the main user upon installation in OpenSolaris 2009.06 (and previous versions) is "Primary Administrator" it essentially makes it the same as running Windows with Administrator privileges... -- This message posted from opensolaris.org _______________________________________________ indiana-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/indiana-discuss
