[prev in list] [next in list] [prev in thread] [next in thread]
List: debian-devel
Subject: Re: setuid/setgid binaries contained in the Debian repository.
From: Matt Zimmerman <mdz () debian ! org>
Date: 2003-08-11 14:34:37
[Download RAW message or body]
On Mon, Aug 11, 2003 at 04:03:38PM +0200, Emile van Bergen wrote:
> On Mon, Aug 11, 2003 at 09:41:49AM -0400, Matt Zimmerman wrote:
> > It sounds like what would be better would be a sandboxable virtual machine
> > with its own instruction set, preferably one which could be linked into your
> > program. guile can't be easily restricted as far as I know. java can, but
> > I don't know of any implementations which can be easily used in this way.
>
> IMHO, you're only thinking that far because for some reason you don't
> trust the separation between uids offered by standard unix, or that it's
> impossible to make the transition from one uid to another securely.
>
> Remember, if that cannot be trusted, we're all toast anyway. A *lot* of
> unix security depends on this.
No, I am thinking that far because I understand setuid semantics and Unix
security, and their weaknesses.
--
- mdz
--
To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic