|
|
United States-English | |
|
|
 |
|
HP-UX System Administrator's Guide: Security Management: HP-UX 11i Version 3 > Chapter 8 Fine-Grained Privileges
Security Implications of Fine-Grained Privileges |
|
|
Fine-grained privileges are not propagated across distributed systems; they are applied only on the local system. For example a process on one system that has PRIV_DACREAD and PRIV_DACWRITE cannot override discretionary restrictions on another system to read or write to a file. In certain situations, if you grant a process a certain privilege or set of privileges, that process can gain additional privileges that were not explicitly granted to it. This is called privilege escalation. For example, a process with the PRIV_DACWRITE privilege can overwrite critical operating system files and, in the process, can grant itself additional fine-grained privileges. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||
 Printable version |
|
|
|
|
|
|||||||||||||||
|
|||||||||||||||
