SuperUser permission for the Driver??
Michael Stone
michael at laptop.org
Wed Jun 25 02:07:43 EDT 2008
We have an activity that wants superuser privilege in order to poke
kernel memory.
The real questions we should be attempting to address here include:
* Who is granting privilege to this activity?
* How are they doing so?
* How should we record the decision?
- My tentative answer is that we should store activities with
different security properties in well-known directory chains
with appropriately restricted write access.
* What kinds of abuse are these mechanisms vulnerable to?
* Whose responsibility is it to handle the error condition that the
human operator does not, him-or-herself posess superuser privilege,
e.g. for theft-deterrence reasons?
Comments?
Michael
More information about the Devel
mailing list