Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10.2 9/17/84; site ittvax.UUCP
Path: utzoo!watmath!clyde!burl!ulysses!mhuxr!mhuxt!houxm!vax135!petsd!peora!pesnta!qumix!ittvax!long
From: long@ittvax.UUCP (H. Morrow Long [Systems Center])
Newsgroups: net.unix-wizards
Subject: Re: new user id system idea.
Message-ID: <1660@ittvax.UUCP>
Date: Tue, 30-Apr-85 21:09:42 EDT
Article-I.D.: ittvax.1660
Posted: Tue Apr 30 21:09:42 1985
Date-Received: Thu, 2-May-85 02:15:47 EDT
References: <6611@ucbvax.ARPA>
Organization: ITT-ATC, Stratford Ct.
Lines: 31

> From: Mike Trachtman  <wizard%wisdom.bitnet@WISCVM.ARPA>
> 
> an idea for protection sceme for unix.
> 
> Note: this is not entirely thought out, any comments are welcome.
> 
> It seems to me that having only all or no privledges,
> is not quite appropiate for systems that support more than 20 users.
> 
> One would like to give teaching assitants access to make some accounts,
> have other users be allowed to do backups, have some users, be allowed
> to access certain devices, etc., w/o giving them full su privs.

	This can be done with a group for the TA's and appropriate
	group permissions on the files, directories and programs they
	need to access.  Another group for operators, etc.  Under
	4.2bsd they can even belong to multiple groups simultaneously.
	All without setuid programs.

	Hey!  Lets not be lazy out there.

-- 

				H. Morrow Long
				ITT-ATC Systems Center,
				1 Research Drive Shelton, CT  06484
				Phone #: (203)-929-7341 x. 634
	
path = {allegra bunker ctcgrafx dcdvaxb dcdwest ucbvax!decvax duke eosp1
	ittral lbl-csam milford mit-eddie psuvax1 purdue qubix qumix 
	research sii supai tmmnet twg uf-cgrl wxlvax yale}!ittvax!long