RBAC

October 19, 2006 at 7:51 pm Leave a comment

Rwhat?

RBAC stands for Role Based Access Controls, which we had an interesting presentation about last night at the London OpenSolaris User Group.

The presentation was given by Darrren Moffatt, a security engineer from Sun who also (kudos) hangs out on various Solaris newsgroups and mailing lists.

I’m not completely sure what to make of RBAC. From one point of view it is an over-engineered version of sudo, which is a tool very familiar to Mac folks. It seems very very powerful. Maybe too powerful though?

Being able to associate an audit trail with a role might be something we could take advantage of at work, though since we’re relatively small it seems a bit overkill.

A way we could use it in the products is in the way we do our logging. It would be nice to be able to have our apps log to particular log files without having to mess with file permissions and stuff. Or is this sort of thing better handled by file system ACLs? Hm.

Advertisements

Entry filed under: OpenSolaris.

Hello world! Submitting patches

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Trackback this post  |  Subscribe to the comments via RSS Feed


October 2006
M T W T F S S
    Nov »
 1
2345678
9101112131415
16171819202122
23242526272829
3031  

OpenSolaris

access(2) OpenSolaris

%d bloggers like this: