>In Solaris we have a way to reasonably safely pass a UID between >processes, but it seems like we're still back to UID based access >controls. The main difference is elimination of relying on the file >system permissions to perform the access controls instead now >relying on this new daemon. Is this a significant improvement?
I think it's marginal, but an improvement. The real problem I see is that on the average Unix system, you're just not going to get better than UID based access. You can play funny games, but that's the reality. --Ken
