Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
From: Parity (parityGHETTOHACKERS.NET)
Date: Mon Apr 16 2001 - 23:48:51 CDT
> Hello All
> I've got a question about the POSIX subsystem on NT.
> It is recommended that the POSIX subsystem is removed from NT and 2000
> for security reasons. My question is why?
> Is it simply following the principle "if you don't need it remove it"?
> Does the POSIX subsystem access resources (disk, etc) directly or does
> it sit on top of WIN32 and just provide a standard interface for POSIX
> compliant software?
Some of the POSIX subsystem calls turn around and call Win32, while others call
the NT native API directly, but none of that really matters (in theory, anyway)
because all the security is implemented and enforced internally by the
executive components of the kernel.