On Tue, Nov 19, 2002 at 10:29:52AM +0800, m.w.chang wrote: > hmm.... let's put things this way.
Okay. > if the education system is working perfectly, do we need law enforcement > and military units to catch failures? No one should be committing crimes > or terrorism, right? Mmm, no, I don't think so, but, for the sake of the discussion, let's suppose it is so. > That's the scenario I wanted to talk about. In linux, the file system > security seems to be used to cater for memory security failure, right? No. File system security arguably the first line of defense. If you don't get it on your disk, it won't get into memory. In reality, as any security "expert" will tell you, security is layered. Physical security is one layer; network security is another layer; user login restrictions are another layer; file system access control is a layer; code audit are another layer; canaries or stack guards in code are another layer; and so on, ad infinitum. > if memory security is guaranteed, what's the use of file system security? To prevent some fat fingered luser from executing a command that, say, wipes the hard disk; to keep me from reading your mail spool. Kurt -- Pro is to con as progress is to Congress. _______________________________________________ Linux-users mailing list [EMAIL PROTECTED] Unsubscribe/Suspend/Etc -> http://www.linux-sxs.org/mailman/listinfo/linux-users
