LCA: How to improve Debian security
Posted Jan 18, 2007 11:19 UTC (Thu) by ekj
Parent article: LCA: How to improve Debian security
In theory stuff ougth to be more secure with more fine-grained security.
In reality, however, complexity is the enemy of security. It is much harder to configure a system with a bazillion roles so that every user, every group and every program has precisely the access that they need than it is to do the same correctly with a more coarse system.
I'm not convinced it's an overall win to introduce something which is theorethically somewhat more secure while being stupendously more complex.
to post comments)