Matthew Garrett1d ago

You have an agent running on your local system. You want it to have access to a restricted set of things, both locally and remote. What is the technical mechanism you use to ensure that it has a subset of the access that you, as an individual logged into the same system, do?

(I am uninterested in "Don't run an agent" because while yes I see your point that doesn't mean it's not happening and security professionals have to deal with what's happening not what we want to be happening)

Show threadMatthew Garrett
Identity is a hard problem and it's just been made harder and also the environment is moving fast enough that everyone trying to sell something is focused on MCP and we've somehow decided that 2026 is the year that The Unix Philosophy finally reenters the ring to rousing music
Apr 2 at 8:25amWeb
Show threadRoger BW 😷1d ago
@mjg59 Some of us looked at systemd and asked "what happened to doing one thing well". It's hard to be a pioneer…