User: Password:
|
|
Subscribe / Log in / New account

capabilities

capabilities

Posted Jun 14, 2007 6:31 UTC (Thu) by zooko (guest, #2589)
In reply to: Why not sandbox it? by eru
Parent article: BadBunny? Only if you invite it in

Hopefully someday such macros will be run with capability-based access control. That would prevent the code from exercising authority that was not granted to it, as well as allowing it to exercise authority that was granted to it. A user interface such as CapDesk, Polaris, or Plash would allow the user to grant authorities *without* pop-up dialog boxes, thus improving on both the security and the ease-of-use of current access control paradigms.


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds