Subject: Re: i386 IO access and chroot()
To: None <>
From: Michael Richardson <>
List: tech-security
Date: 07/14/2001 23:31:10
>>>>> "Michael" == Michael Richardson <> writes:
    Michael> But, let's do this via "restrict_system()" of some sort, which
    Michael> fixes all sorts of chroot/security related stuff that we need.

  having read jail(2) from FreeBSD, I think that we do something similar.

  Or just wait for cap_*() to be finished and import that.

]       ON HUMILITY: to err is human. To moo, bovine.           |  firewalls  [
]   Michael Richardson, Sandelman Software Works, Ottawa, ON    |net architect[
] |device driver[
] panic("Just another NetBSD/notebook using, kernel hacking, security guy");  [