A new kind of security needed
Jason Stone
freebsd-security at dfmm.org
Thu Jul 17 06:24:30 UTC 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> Is anyone else nervous trusting all his programs to have access to all
> his files? Is there already a reasonable solution to this problem?
>
> It makes me nervous for, say, Firefox and its plugins to be able to read
> and write every file I own, whether it's gnucash, ~/.ssh, or other
> sensitive files.
Absolutely. Right now, I use different logins for different things
(casual web surfing, financial stuff, snd work), but it's inconvenient and
far from fullproof.
Capabilities or MAC systems could be used here -- someone just has to put
in the work to make it happen.
-Jason
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (FreeBSD)
Comment: See https://private.idealab.com/public/jason/jason.gpg
iD8DBQFIfuWdswXMWWtptckRAui7AJoDPimy9czlyCRbPcDMTK0XzZ9GIgCg2u0z
CQweJjrVQz2fV3xNH5ML50M=
=G2pt
-----END PGP SIGNATURE-----
More information about the freebsd-security
mailing list