|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
I'm at the Usenix Technical Conference this week in Monterey. If
you've never, you should.
Anyway, a person from OpenBSD told me about systrace
<http://www.citi.umich.edu/u/provos/systrace/>. Very, very cool
thing. It allows you to specify security policy per application for
system calls. E.g., I want to run a distributed client like seti@home,
but I don't really trust it. So I run it as user seti and apply a
security policy that it may not access the file system outside its
home directory. Or whatever.
There's a gnu/linux port underway. (Why doesn't rms care about people
saying GNU/BSD?)
--
Jeff
Jeff Abrahamson <http://www.purple.com/jeff/>
The Big Book of Misunderstanding, now in bookstores and on the web:
<http://www.misunderstanding.net/buystuff.html>
______________________________________________________________________
Philadelphia Linux Users Group - http://www.phillylinux.org
Announcements-http://lists.phillylinux.org/mail/listinfo/plug-announce
General Discussion - http://lists.phillylinux.org/mail/listinfo/plug
|
|