Enforcer is the program that checks passwords, access control lists, etc
Any bug in enforcer means way for malicious user to gain ability to do anything
In Unix, superuser has all the powers of the Unix kernel - can do anything. Because of coarse-grained access control, lots of stuff has to run as superuser to work. If bug in any program, you're in trouble.
Paradox:
Ian Wakeman 2005-02-22