[cap-talk] More Heresey: ACLs not inherently bad
Karp, Alan H
alan.karp at hp.com
Mon Sep 22 10:33:30 CDT 2008
Sandro Magi wrote:
> If a solution cries out for ACL-type access control, I
> think that's a fair trade off.
>
I haven't seen any such solutions yet, including Jonathan's scenario. When dealing with people who insist that an ACL is needed in spite of all the evidence to the contrary, I set up a design that uses the ACL to decide what capabilities a user gets at login. That seems to placate them. I have also proposed in this thread implementing VOC using the ACL to deny a request made with a valid capability.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list