(Sorry, I forgot to add in my last message that I am not subscribed to
this list, so please cc me in replies.)
Date: Sun, 10 Jul 2011 21:57:03 +0300
From: Alexey Cheusov
As I said earlier my code is based solely on kauth(9) and I assume
it is correct. Also I assume my code is correct
On Mon, Jul 11, 2011 at 08:29:11AM +0100, David Laight wrote:
>
> One problem is that, historically, unix privileges have always been
> based on a sledgehammer approach - if you don't want everybody to
> be able to do something then only root can do it.
>
That can and has been fixed in other Uni
On Sun, Jul 10, 2011 at 12:58:42PM -0400, Thor Lancelot Simon wrote:
>
> What I ended up with on my system that started out pretty much where
> this proposal does was with a hack that used special group IDs as
> pseudo-capabilities...
Cumulating capabilities (and negations?) over all the subsidua