[cap-talk] What we have here is a failure to communicate
Raoul Duke
raould at gmail.com
Sat Dec 27 18:16:02 EST 2008
> What would really help me is an example of authentication without
> authorization and vice-versa.
at the risk of putting my foot in my mouth, i thought up these random examples:
(a) say you are logged in and thus authenticated as user foo on a
unixy system. you might then be authorized to edit ~foo/.profile, but
likely not authorized to edit /etc/fstab.
(b) say you know the password to skip the line at the new night club
in NYC; with it, you are authorized to get directly in, but you aren't
authenticated as any particular agent. (this kind of thing happened
with my family when i was younger, when we tried to get onto a us base
to go to the bowling lane there (this was in england) and the guard
asked us "are you on the list?" when we rolled down the window and so
my dad just said "yes", and was obviously an american with appropriate
accent etc. and so the guard waved us through.)
sincerely.
More information about the cap-talk
mailing list