| Policy Models (1) |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| A
“Policy Model” is a framework for creating |
|||||||||||||||
| a
specific policy for a specific organization |
|||||||||||||||
| • | Linux/Unix |
||||||||||||||
| – | Users,
groups, everybody |
||||||||||||||
| – | “owner”
(or “…”) controls grant of rights |
||||||||||||||
| – | Rights
based on UID, GID – Focus on files |
||||||||||||||
| – | Process
has rights of parent |
||||||||||||||
| • | can
change GID or drop rights |
||||||||||||||
