Subject: Re: kern.showallprocs implementation
To: Hubert Feyrer <firstname.lastname@example.org>
From: Bill Studenmund <email@example.com>
Date: 08/30/2005 11:30:35
Content-Type: text/plain; charset=us-ascii
On Tue, Aug 30, 2005 at 08:20:43PM +0200, Hubert Feyrer wrote:
> On Tue, 30 Aug 2005, Bill Studenmund wrote:
> >Well, what other suggestions do we have?
> Open up a seperate namespace?
Oh, I was hoping to restrict suggestions to what other suggestions do we=20
have for a name for this space for these features now. :-)
> It seems Solaris did that, skimming through privileges(5) and rbac(5).
> Of course a "full" implementation would also have all this on a=20
> per-process basis, not global. So that you can e.g. restrict only=20
> processes in one chroot.
I think something like that would be fine. It would be a separate=20
discussion, but a good one.
And if we went with the Solaris model, I think it should have its own=20
security.something namespace. :-)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (NetBSD)
-----END PGP SIGNATURE-----