|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Jun-ichiro itojun Hagino (itojun_at_cvs.openbsd.org)
Date: Wed Oct 16 2002 - 10:01:09 CDT
CVSROOT: /cvs
Module name: src
Changes by: itojun
cvs.openbsd.org 2002/10/16 09:01:08
Modified files:
sys/dev : systrace.c systrace.h
bin/systrace : Makefile filter.c intercept.c intercept.h lex.l
openbsd-syscalls.c parse.y systrace.1
systrace.c systrace.h
Log message:
support for privilege elevation.
with privilege elevation no suid or sgid binaries are necessary any
longer. Applications can be executed completely
unprivileged. Systrace raises the privileges for a single system call
depending on the configured policy.
Idea from discussions with Perry Metzger, Dug Song and Marcus Watts.
from provos
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]