TrustedBSD Extensions Project
stanislav shalunov
shalunov at att.com
Wed Apr 12 22:30:30 GMT 2000
> From: David Collier-Brown - Sun Canada <davecb at scot.canada.sun.com>
> It does, but a later sentence says: "These access controls
> shall be capable of including or excluding access to the
> granularity of a single user." That's the clause that
> requires you have a mechanism that isn't the Unix (sub)set.
Traditional unix filesystem semantic provides the capability of
"including or excluding access to the granularity of a single user."
Only root can do it, but I don't where it says that mortals have to
be able to do it.
It *explicitly* gives an example self/group/others as access control
scheme for a B1 system. Do you say after that that it's not enough?
To Unsubscribe: send mail to majordomo at trustedbsd.org
with "unsubscribe trustedbsd-discuss" in the body of the message
More information about the trustedbsd-discuss
mailing list