[cap-talk] when is the end of copy and paste from the web browser
Jonathan S. Shapiro
shap at eros-os.org
Tue Dec 6 14:09:55 PST 2011
On Tue, Dec 6, 2011 at 12:28 PM, Raoul Duke <raould at gmail.com> wrote:
> i hope by "most users" you mean pretty much all humans anywhere, just
> about. even security professionals could get it wrong sometimes...
Definitely!
> , i'd
> hazard. part of the problem is that the ramifications of the
> permissions are too broad and deep for humans to really grok, i think.
I think that's true at some level, but it also seems that the implications
of permission are *harder* to understand when the permission is ambient.
Humans have fairly good intuitions about designation, but fairly week
intuitions about things that are "in the environment".
The other thing that humans seem to have trouble with is consequence
arising from transitivity. The main tool I know about for managing and
bounding that is membranes of one form or another.
Jonathan
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.eros-os.org/pipermail/cap-talk/attachments/20111206/d190556a/attachment.html
More information about the cap-talk
mailing list