Subject: Re: Privilege Elevation with systrace
To: Julio Merino <email@example.com>
From: Greywolf <firstname.lastname@example.org>
Date: 10/11/2002 15:28:49
On Sat, 12 Oct 2002, Julio Merino wrote:
# Very interesting...
# > or allow an application to read /dev/kmem
# > netbsd-fsread: filename "/dev/kmem" then permit as :kmem
# So, this means that we do not need `aperture' any longer to run XFree86
# with a non-INSECURE kernel ?
[The magic smoke leaks from between Greywolf's ears with a *poof* .]
This means, also, that we might be able to decrease the number of
processes that actually need to run as root at all.
NetBSD, Net Profit.