This talk will explain how the GNU/Hurd operating system maps the usual Unix semantics (as defined by POSIX) to its own security model and attempts to fix many of their flaws which continuously cause headaches to Unix system administrators. While doing this would be impossible without the advantages of a microkernel design, an important element certainly is the authentication server of the Hurd, which implements a very small yet flexible Remote Procedure Call (RPC) interface.