From: gil@netcom.com (Gilbert Nardo) Subject: Re: Security system for Linux Date: Sat, 17 Apr 1993 16:08:20 GMT
michaelw@desaster.hanse.de (Michael Will) writes:
> mat@eccles.dsbc.icl.co.uk (Matthew Roderick - KID01) writes:
> > Secure File system (2 inodes per file)
>
> What about the journalled-filesystem such as aix uses?
> You can pull the plug of a rs6000 and it will never loose a byte.
> fsck? You do not need it after a cold-reboot.
Journalled file systems belong more under the category "system reliability"
than it does under "system security" (fuzzylogically speaking). Highly
secure systems that meet requirements for Class A1 or B3 levels include
features such as a reference monitor, which is implemented within the
kernel. Good references on this material can be found in the Proccedings
of the National Computer Security Conference.
IMHO, full fledged system security must be well designed in view of the
whole system. For Linux, IMHO again, this would lead to system bloating
much too early in the game (Please don't interpret this as a "stop
this talk on security" but more like "ahh, more reference material").
-- Gil Nardo | gil@netcom.com Migrant Computing Services | (415)664-1032 (voice) 1032 Irving Street, #435 |----------------- San Francisco, 94122 | Save the Universe: Stop Entropy Now!