|
|
|
|
|
|
by elevation
237 days ago
|
|
|
Tools like SELinux allow administrators to restrict a program before it runs, a sort of guard rail. pledge() allows developers to further restrict a program dynamically at runtime. More like defensive driving. Both are useful techniques. |
|
|