Sysctl: A Distributed System Control Package
LISA '93 Proceedings of the 7th USENIX conference on System administration
Priv: Secure and Flexible Privileged Access Dissemination
LISA '96 Proceedings of the 10th USENIX conference on System administration
Single Sign-On and the System Administrator
LISA '98 Proceedings of the 12th USENIX conference on System administration
A Retrospective on Twelve Years of LISA Proceedings
LISA '99 Proceedings of the 13th USENIX conference on System administration
An Improved Approach for Generating Configuration Files from a Database
LISA '00 Proceedings of the 14th USENIX conference on System administration
Hi-index | 0.00 |
Administration of a large and complex system poses several problems: Usually, some tasks must be delegated due to lack of qualified or trusted staff, and some tasks must be automated. In many cases, some parts of the task might need special credentials, such as Kerberos tickets or AFS tokens, that may not necessarily be easily available to the person executing the task. The problem is that most systems divide users into two groups: haves and have nots, and provide no mechanism for finer-grained access control. In addition, the tasks executed must be carefully recorded for possible later auditing. Earlier solutions, such as the setuid bit, Moira, ADM, and sysctl, can be used to accomplish this, either in a limited or dangerous (in the case of setuid) fashion. Exu proposes to solve the problem via secure, authenticated connection to a server with full authentication that can cause things to happen in real time.