Re: Rational for debian group accounts

To: Manong Dibos <jwalther@citytel.net>
Cc: branden@purdue.edu, debian-devel@lists.debian.org
Subject: Re: Rational for debian group accounts
From: Bernd Eckenfels <lists@lina.inka.de>
Date: Thu, 18 Sep 1997 01:15:17 +0200
Message-id: <[🔎] m0xBTJW-00014AC@lina.inka.de>
In-reply-to: <[🔎] Pine.LNX.3.96.970917131603.983B-100000@citytelprct73.citytel.net>; from Manong Dibos on Wed, Sep 17, 1997 at 01:18:08PM +0000
References: <[🔎] Pine.LNX.3.96.970917145931.5768D-100000@apocalypse.sequitur.org> <[🔎] Pine.LNX.3.96.970917131603.983B-100000@citytelprct73.citytel.net>

Hello,

> Right now I use groups to give users access to certain classes of
> programs, or even to individual programs, on a case by case basis.  Is
> this the correct way to use groups?  Am I missing something?

Actually using Access Control for Programs is less effective then using
access control for Data (unless the Programs run SUID or SGID). If you limit
access to a program, the the user can and will install her own copy.

Greetings
Bernd
-- 
  (OO)      -- Bernd_Eckenfels@Wittumstrasse13.76646Bruchsal.de --
 ( .. )  ecki@{inka.de,linux.de,debian.org} http://home.pages.de/~eckes/
  o--o     *plush*  2048/93600EFD  eckes@irc  +4972573817  BE5-RIPE
(O____O)       If privacy is outlawed only Outlaws have privacy


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

References:
- Re: Rational for debian group accounts
  - From: Branden Robinson <branden@apocalypse.sequitur.org>
- Re: Rational for debian group accounts
  - From: Manong Dibos <jwalther@citytel.net>

Prev by Date: Re: new section for security related packages
Next by Date: Re: Rational for debian group accounts
Previous by thread: Re: Rational for debian group accounts
Next by thread: Re: Rational for debian group accounts
Index(es):
- Date
- Thread