摘要
在深入了解和剖析Solaris8的内核结构的基础上,该文利用可装载内核模块技术实现了根据用户的级别来确定其对文件、目录的访问权限,并实现了对进程的隐藏。加强了系统管理员对系统资源和用户的管理和控制,在一定程度上实现了Solaris8由自主访问控制向强制访问控制的过渡,有效地增强了系统的安全性。
Based on the thorough understanding and analysis of the kernel architecture, this paper puts forward the loadable kernel module, through which user can regulate the users authority to files, directories and process according to the users' priority. Then the paper strengthens the system administrators' management and controls to the system resources and users, achieving the transition of the access control in Solaris8 from DAC (Discretionary Access Control) to MAC (Mandatory Access Control) to some extent. Thus it has greatly reinforced the OS security.
出处
《计算机工程》
CAS
CSCD
北大核心
2004年第17期79-80,共2页
Computer Engineering
基金
国家"973"计划基金资助项目(G1999035801)
国家"863"计划基金资助项目(2002AA144020)
