--EZN6irWB3fS+DSGO
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Tue, Mar 28, 2006 at 05:36:41PM +0000, Robert Watson wrote:
> If anyone interested in this discussion is going to be at BSDCan, it woul=
d=20
> be great to have a BOF session on pluggable security frameworks.  Having=
=20
> done work with a number of them (RSBAC, LSM, FLASK, TrustedBSD MAC=20
> Framework, kauth), I feel like I have something to say on the topic, but=
=20
> also feel the last word hasn't yet been said -- these frameworks all have=
=20
> different properties, making some things easier, and some things harder. =
=20
=20
Thankyou very much for your insightful and constructive
contributions. You bring perspective not only from practical
implementation and deployment, but also simply of the "bigger picture"
a suitable distance from the tangle of the immediate discussion.  This
wisdom is VERY welcome indeed.

I'm quite sure there's interest and value in commonality in these
frameworks; in addition to the pros and cons of each, the complexity
of the landscape weakens the chances of success for any of them.
=20
--=20
Dan.=20


--EZN6irWB3fS+DSGO
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (NetBSD)

iD8DBQFEKZ5eEAVxvV4N66cRAiPHAJ0SR12Zs69VOWyHVGpmHXMUuX0cIgCeOCwZ
ORSyZfd1PeRTxKe9Hhv91kY=
=Wbhx
-----END PGP SIGNATURE-----

--EZN6irWB3fS+DSGO--