Danek Duvall wrote: > Okay. [ Error on attempting an unauthorized operation ] > certainly seems to be the simple answer on the development > side, too.
Yes and no. You're still stuck with either preemptively checking authorization so that you don't start the operation without being reasonable sure of succeeding, or recovering when you get halfway through the operation and find a particular action that you don't have authorization for. (Note that I use "authorization" in a very general sense here, to include things like write access to directories, RBAC authorization to use services, and so on.) It would be interesting to drag in a real security wonk. I'm pretty sure that there is no easy way to address this class of problem, and I'm not at all sure that there's any *good* way to address it. Full-scale transactions, maybe, but that's *really* hard. _______________________________________________ pkg-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/pkg-discuss
