Subject: Re: Privilege Elevation with systrace
To: Julio Merino <>
From: Greywolf <>
List: current-users
Date: 10/11/2002 15:28:49
On Sat, 12 Oct 2002, Julio Merino wrote:

# Very interesting...
# > or allow an application to read /dev/kmem
# >
# >  netbsd-fsread: filename "/dev/kmem" then permit as :kmem
# So, this means that we do not need `aperture' any longer to run XFree86
# with a non-INSECURE kernel ?

[The magic smoke leaks from between Greywolf's ears with a *poof* .]

This means, also, that we might be able to decrease the number of
processes that actually need to run as root at all.

NetBSD, Net Profit.