> > On 10-Jul-07, at 12:28 AM, Doug Scott wrote: > > > John Sonnenschein wrote: > >> > >> On 9-Jul-07, at 11:23 PM, Tim Bray wrote: > >> > >>> On Jul 9, 2007, at 7:28 PM, Richard Elling wrote: > >>> > >>>>> Minor point, we don't need to use something as > braindead as sudo, > >>>>> we're Solaris, we can use RBAC.
I love all the sudo/RBAC stuff because it goes to the security architecture of Indiana. But as such it should be in its own thread, so you guys can have a productive discussion on it! IMHO, one should talk in terms of user-facing features that you think are required, then the solution to that problem can be found. For instance, should Indiana by default present: - a root account by default, forcing the user to manually make a new account for a user (windows method) - a user account by default, forcing the user to set a root password as well and log in as root to make significant changes - a user account with no password at all, and one password just for making significant changes (implemented with popup windows when restricted features need to be accessed) - etc - etc But again, I think this stuff would be really well served in its own thread where the smart people can joust it out. :) -- This message posted from opensolaris.org _______________________________________________ indiana-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/indiana-discuss
