[cap-talk] More Heresey: ACLs not inherently bad
Karp, Alan H
alan.karp at hp.com
Mon Sep 1 14:10:30 CDT 2008
Shap wrote:
>
> The real issue is that the kinds of things that we generally forget are
> actually parameters: like the space of dynamic libraries...
>
There are two sets of authorities involved in an invocation. Those that are the same every time and those that vary. In my experience, the latter usually involves only a few parameters. It is the former that involves large numbers of rights. While specifying these rights in sufficient detail is complicated, treating them as an installation endowment means that the task need only be done once when the library is selected for use.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list