Symbolic user names and RFS
Jack Jansen
jack at boring.uucp
Mon Mar 3 04:54:24 AEST 1986
The whole problem is the capability vs. access control list
question.
While access control lists are usually much easier in use (you
never have to specify passwords, etc, except when you
log in), there has to be a central authority handing out
user names.
Capabilities (e.i. passwords) don't need centralized administration,
but you have to specify a password on every access.
So, in a distributed network, especially one spanning multiple
organizations, it is probably better to use capabilities in stead
of ACL's.
Now, the only problem is to integrate capability-based
security mechanisms in unix......
--
Jack Jansen, jack at mcvax.UUCP
The shell is my oyster.
More information about the Comp.unix.wizards
mailing list