I am very interested in papers, archived discussions, or references to
material concerned with applying access control policies to file system
objects. For example, if you are managing a Windows environment you would
typically first create your access control policy for each class of
information, separate those classes within the file system using shares and
directories, and then apply share and NTFS ACLs to each share and
directory, respectively, to implement your access control policy.
I am specifically interested in the concepts on how actually implementing
access control policies can best be done. (High-level and
platform-independent discussions would be nice, but I am also happy to read
documentation on specific ways to implement the policies on a given
platform.) Basically, how does one go from something like an access control
matrix (ACM) to the file-system-level ACLs. (Of course, in many situations
an ACM is never used due to them getting unwieldy rather fast.)
--- Dustin Puryear <dustin@puryear-it.com> Puryear Information Technology Windows, UNIX, and IT Consulting http://www.puryear-it.com ___________________ Nolug mailing list nolug@nolug.orgReceived on 05/04/03
This archive was generated by hypermail 2.2.0 : 12/19/08 EST