|
|
|
|
|
|
by joveian
3880 days ago
|
|
|
Interesting... Drawbridge sounds like rump kernels (which can be used in userland processes as well as in VMs), where everything the application does is turned into a small number of hypercalls (12ish IIRC). It seems like there are RISC and CISC forms of higher security system call interfaces (e.g. pledge needing sendsyslog(2) and SOCK_DNS). It is good to see both approaches getting more use :). I hope pledge is adopted widely as it seems like a good approach to easily get significant improvement (particularly when exec is not needed, since restrictions are not inherited). A link to the pledge man page since I haven't seen it mentioned yet:
http://www.openbsd.org/cgi-bin/man.cgi/OpenBSD-current/man2/... |
|
|