Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!zaphod.mps.ohio-state.edu!swrinde!cs.utexas.edu!chinacat!sequoia!rpp386!jfh From: jfh@rpp386.cactus.org (John F Haugh II) Newsgroups: comp.unix.internals Subject: Re: Unix security additions Message-ID: <19114@rpp386.cactus.org> Date: 19 Mar 91 01:14:31 GMT References: <1819@svin02.info.win.tue.nl> <1991Mar11.174711.4027@decuac.dec.com> <1991Mar12.102415.22627@kithrup.COM> <1991Mar12.185154.2423@decuac.dec.com> <9128@sail.LABS.TEK.COM> <15996.27e4cf9a@levels.sait.edu.au> Reply-To: jfh@rpp386.cactus.org (John F Haugh II) Organization: Lone Star Cafe and BBS Service Lines: 24 X-Clever-Slogan: Recycle or Die. In article <15996.27e4cf9a@levels.sait.edu.au> xtdn@levels.sait.edu.au writes: >terryl@sail.LABS.TEK.COM writes: >> according to this acquaintance, there is a concept of "secure" windows, (and >> natch, there is also a concept of "non-secure" windows..) And one of the things >> one can NOT do is "cut" from a "secure" window, and then "paste" into a "non- >> secure" window. Can't have that "sensitive" guv`mint data released to the >> masses, I guess..... > >Presumably one cannot TYPE in a non-secure window either? Can't have that >"sensitive" guv`mint data typed by hand, either, can we? At some point in time you ultimately have to trust the people who you have given access to this data to. This is why it is permissible to type from a higher level window to a lever level window - simply because desk blotters and note pads lack MAC labels. As for why you can't have cut and paste between windows, hell, seems like a completely arbitrary restriction to me - provided the invoker has the authority to downgrade information, that is. "downgrader" isn't exactly an authority that should be tossed around, so maybe there is something to it ... -- John F. Haugh II | Distribution to | UUCP: ...!cs.utexas.edu!rpp386!jfh Ma Bell: (512) 832-8832 | GEnie PROHIBITED :-) | Domain: jfh@rpp386.cactus.org "I've never written a device driver, but I have written a device driver manual" -- Robert Hartman, IDE Corp.