Re: Capsicum: practical capabilities for UNIX

To: Jean-Yves Migeon <jeanyves.migeon%free.fr@localhost>
Subject: Re: Capsicum: practical capabilities for UNIX
From: "Perry E. Metzger" <perry%piermont.com@localhost>
Date: Sun, 26 Sep 2010 20:48:45 -0400

On Sun, 26 Sep 2010 23:54:19 +0200 Jean-Yves Migeon
<jeanyves.migeon%free.fr@localhost> wrote:
> > Actually, it is pretty easy for most systems programs to retrofit
> > what you want. It is a lot harder for arbitrary programs, but
> > that's another story.
> 
> I don't think so. For "small", "trivial" programs, like those used
> for hashing, compress/uncompress, it is indeed easy to retrofit.
> 
> But if you go for programs like web browsers, web/application
> servers, databases, or even any GUI program (PDF readers, did I say
> browsers?), it is a lot less trivial to bring a capability model in.

They did Chrome in the paper, and it required very few lines of code
(under 100). They did other tests too. It appears that they've had
quite a bit of success in creating a very usable API here. I'm not
entirely surprised, given the nature of what they're doing.

I suspect programs like ntp or postfix would be quite easy to
do. Emacs would be quite hard.

Perry
-- 
Perry E. Metzger                perry%piermont.com@localhost

Follow-Ups:
- Re: Capsicum: practical capabilities for UNIX
  - From: Jukka Ruohonen

References:
- Capsicum: practical capabilities for UNIX
  - From: David Young
- Re: Capsicum: practical capabilities for UNIX
  - From: Jean-Yves Migeon
- Re: Capsicum: practical capabilities for UNIX
  - From: Perry E. Metzger
- Re: Capsicum: practical capabilities for UNIX
  - From: Jean-Yves Migeon

Prev by Date: Re: Capsicum: practical capabilities for UNIX
Next by Date: Re: Capsicum: practical capabilities for UNIX
Previous by Thread: Re: Capsicum: practical capabilities for UNIX
Next by Thread: Re: Capsicum: practical capabilities for UNIX
Indexes:

Home | Main Index | Thread Index | Old Index