[Esd-l] macro scanner: defang instead of refuse

Floyd Pierce floydp at boxusa.com
Fri Jun 7 04:27:02 PDT 2002

While somewhat simplified this has to do with ACLs on unix (AIX):

 From an administrator's standpoint I doubt that ACLs are very workable.
It would be better, with a large user count, to attempt some kind of
ad-hoc group scheme.

The other approach that might work (to the share a file problem) would
be (even though there is no such thing) a security thru obscurity
approach. If you allow the user to upload to a file area in webspace and
hand back a URL that is obscure and ends in a directory that is not
listable, it might be secure enough to satisfy some needs. This is
sort of what I had in mind when I suggested the "strip an attachment
and hand back a link" enhancement to the filter.

At 09:02 PM 6/6/2002 -0700, John D. Hardin wrote:
>On Wed, 5 Jun 2002, Floyd Pierce wrote:
> > Your lack of knowledge regarding Unix permissions must be
> > legendary.
>Now, now.
> > You can do the same thing with either, it'll just take you 10
> > times longer to administer it with M$.
>Do you have handy any URLs for Unix ACLs?
>  John Hardin KA7OHZ    ICQ#15735746    http://www.impsec.org/~jhardin/
>  jhardin at impsec.org                        pgpk -a jhardin at impsec.org
>   768: 0x41EA94F5 - A3 0C 5B C2 EF 0D 2C E5  E9 BF C8 33 A7 A9 CE 76
>  1024: 0xB8732E79 - 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
>  "To disable the Internet to save EMI and Disney is the moral
>   equivalent of burning down the library of Alexandria to ensure the
>   livelihood of monastic scribes."
>                                     -- John Ippolito of the Guggenheim
>    351 days until The Matrix Reloaded
>Esd-l mailing list
>Esd-l at spconnect.com

Floyd Pierce              | Director of Information Technology
Phone  847-790-2830 (IL)  | Box USA
Phone  817-783-2355 (TX)  | floydp at boxusa.com
Fax    847-790-2880       | floyd at floydbob.com

More information about the esd-l mailing list