[NCLUG] Why not Root?

Michael Milligan milli at acmeps.com
Sat Mar 17 22:07:12 MDT 2007


John L. Bass wrote:
> A much safer engineering solution is using capability based enables/enforcement
> at the kernel level, where networking operations can be allowed without allowing
> root access to all the tools which admin the subsystem.

For those interested, just google for "Linux LCAP".

Regards,
Mike

PS:  Yes, google has become a mainstream verb these days...  I wonder
what the Mensa society thinks of that.

-- 
Michael Milligan                                   -> milli at acmeps.com
Acme Professional Services LLC                        970-581-9948



More information about the NCLUG mailing list