At Sun, 30 Apr 2006 18:13:42 -0400, "Jonathan S. Shapiro" <[EMAIL PROTECTED]> wrote: > > On Sun, 2006-04-30 at 21:24 +0200, Tom Bachmann wrote: > > My _theory_ is that all suid applications are either unnecessary or can > > be redesigned in a way similar to /sbin/passwd. > > It remains to be determined whether this redesign actually works....
Depends on what redesign you are talking about. The first approximation definitely works: Run suid programs as system services which are advertised to the user via capabilities. This is in fact much closer to the Unix way of doing suid instantiation than the constructor mechanism (as it is normally used), because in Unix the program runs unconfined on _durable_ resources. Thanks, Marcus _______________________________________________ L4-hurd mailing list [email protected] http://lists.gnu.org/mailman/listinfo/l4-hurd
