Paul Jakma wrote:
>
> On Tue, 22 Feb 2000, Linda Walsh wrote:
>
> > Just a data point, but when I have trusted IRIX installed,
> > there is no booting up in non-trusted mode. Capabilities are in
> > effect even in single-user.
>
> Same with Digital/Tru64 Unix. It runs trusted all the way. And if you
> lose the root password you are pretty much screwed... :)
I know my manager runs with an open 'root' account (no password) because root has no special caps on his system. It's sorta like a
guest signon. On our capability based machines, UID=0 means no more than
UID=34567. Imagine the poor hacker who hacks the root account only to
discover he has less privilege than a normal user....:-) Neat concept!
-l
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Wed Feb 23 2000 - 21:00:31 EST