[Python-Dev] Re: rexec.py unuseable (original) (raw)
Jack Jansen Jack.Jansen at cwi.nl
Tue Dec 16 16:04:40 EST 2003
- Previous message: [Python-Dev] Re: rexec.py unuseable
- Next message: [Python-Dev] Re: rexec.py unuseable
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On 16-dec-03, at 17:16, Luke Kenneth Casson Leighton wrote:
Luke replied:
capabilities, acls, schmapabilities, same thiiing :)
No... they're not. Read the thread I mentioned above, or read this, and some of the other documentation for the language E: http://www.erights.org/elib/capability/ode/ode-capabilities.html no offense intended: i'll read that later, i'm running out of time. without going into too many definitions, consider what i am advocating to be like an access control list but instead to be a capabilities control list, instead.
The distinction between capabilities and ACLs is really important, because they are almost each others opposite. With capabilities you have an (unforgable) right to do something and no-one cares about your identity, with ACLs you have an unforgable identity which is checked against the ACL.
Jack Jansen, <Jack.Jansen at cwi.nl>, http://www.cwi.nl/~jack If I can't dance I don't want to be part of your revolution -- Emma Goldman
- Previous message: [Python-Dev] Re: rexec.py unuseable
- Next message: [Python-Dev] Re: rexec.py unuseable
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]