From mboxrd@z Thu Jan 1 00:00:00 1970 Message-ID: <4723B9AD.8090308@gmail.com> Date: Sat, 27 Oct 2007 16:20:29 -0600 From: don bailey User-Agent: Thunderbird 2.0.0.6 (X11/20070816) MIME-Version: 1.0 To: Fans of the OS Plan 9 from Bell Labs <9fans@cse.psu.edu> Subject: Re: [9fans] security References: In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Topicbox-Message-UUID: dbcd4efa-ead2-11e9-9d60-3106f5b1d025 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 > clearly, you're not getting an account on my machine. > This goes back to the typical MacOSX argument: "If I have MacOSX laptop and you compromise my local account, it doesn't matter because you haven't gotten root, right?" Of course, this isn't true because all your data is owned by your user credentials. If someone compromises a single user laptop they don't need root or any other super user semantic. Being you compromises all the information necessary to hurt you: banking information, SSN, credit card info, e-mail logins, locally stored files, etc... I'd say that's enough of a problem. Even Plan 9's well designed authentication domains don't properly mitigate the issue of the local account being compromised. D -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFHI7mryWX0NBMJYAcRAmSjAKCWXuQeAO7mTXKlwChpRYb1BDV0eQCeJn2t 1gCP7bJWlAofxI4Ta4oZeig= =f3q/ -----END PGP SIGNATURE-----