Posted Nov 23, 2010 19:56 UTC (Tue) by vonbrand
In reply to: Removing setuid
Parent article: Ghosts of Unix past, part 4: High-maintenance designs
Whatever you do, the result will still be some kind of membrane that separates (but connects) two domains with different privileges. Everything that goes through it will have to be checked. Sure, there are other ways to handle this; the real question is which is the hardest to foobar...
to post comments)