> Hello All > > I've got a question about the POSIX subsystem on NT. > > It is recommended that the POSIX subsystem is removed from NT and 2000 > for security reasons. My question is why? > > Is it simply following the principle "if you don't need it remove it"? Yes. > Does the POSIX subsystem access resources (disk, etc) directly or does > it sit on top of WIN32 and just provide a standard interface for POSIX > compliant software? Some of the POSIX subsystem calls turn around and call Win32, while others call the NT native API directly, but none of that really matters (in theory, anyway) because all the security is implemented and enforced internally by the executive components of the kernel. pty
This archive was generated by hypermail 2b30 : Mon Apr 16 2001 - 21:57:19 PDT