[Info-vax] VMS Privileges Versus Linux Capabilities
Stephen Hoffman
seaohveh at hoffmanlabs.invalid
Wed Jun 22 09:47:31 EDT 2016
On 2016-06-22 08:09:12 +0000, mcleanjoh at gmail.com said:
> On Friday, June 17, 2016 at 10:06:43 AM UTC+10, Stephen Hoffman wrote:
>
>> UWSS and drivers and execlets and ACPs, and images installed with any
>> ALL-class privilege — and other such constructs — are already or can
>> become fully privileged, with complete system access.
>
> I thought ALL privileges didn't automatically include SECURITY
> privilege, or does it in some contexts?
If an attacker has any ALL privilege, any other privilege is either
indirectly or directly available. The attacker might have to read and
locate and rewrite a disk sector containing the SYSUAF data or the
commands of the system startup procedure for instance, but the other
privileges are available.
--
Pure Personal Opinion | HoffmanLabs LLC
More information about the Info-vax
mailing list