YA Question about "Secure Unix"

David S. Hayes merlin at hqda-ai.UUCP
Thu Dec 18 04:35:03 AEST 1986


In article <1417 at ttrdc.UUCP>, levy at ttrdc.UUCP (Daniel R. Levy) writes:
> Does this Gould "Secure Unix" enforce a reasonably small upper limit
> << max process size on lengths of pathnames passed to system calls?

     I had some of this explained to me by a Gould salesman at last
year's Federal Computer Conference, so it may not be right, but:

     I assume you'd like to do strange things to some files that you
aren't supposed to touch.  Perhaps go searching for directories by
trying a whole lot of possible file names?  (Can you say SLOW?  I knew
you could :-)

     The gould maintains two separate worlds: one trusted, one not.
The trusted world looks like unix has always looked, with /etc/passwd
and all that.  The untrusted world is the same file system (no
chroot(2)), but many of the system files do not appear there.  It's
just not possible (supposedly) to namei them unless you're already in
the trusted world.  Note that, since there's no chroot being done
here, ALL files will appear to a trusted user, and appear in their
proper places.
-- 
	David S. Hayes, The Merlin of Avalon
	PhoneNet:	(202) 694-6900
	ARPA:		merlin%hqda-ai at brl-smoke
	UUCP:		...!seismo!sundc!hqda-ai!merlin



More information about the Comp.unix.questions mailing list