That's why you shouldn't be running builds as a user with privileges.
Chicken and egg problem IMHO, there's nothing to stop you becoming
root and running said build..
On 8 Jun 2009, at 14:57, Lurie wrote:
All the certifications in the world do no good if the
security system
is configured to hand out root privileges lightly.
I completely agree, imagine a scenario where an opensource project
repository has been compromised, and the Makefile for example
changes some files in /etc with "pfexec" and the user would never
even notice it. As cool as RBAC may be, considering that the default
privilege for the main user upon installation in OpenSolaris 2009.06
(and previous versions) is "Primary Administrator" it essentially
makes it the same as running Windows with Administrator privileges...
--
This message posted from opensolaris.org
_______________________________________________
indiana-discuss mailing list
[email protected]
http://mail.opensolaris.org/mailman/listinfo/indiana-discuss
______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________
_______________________________________________
indiana-discuss mailing list
[email protected]
http://mail.opensolaris.org/mailman/listinfo/indiana-discuss
