On Fri, Jul 13, 2007 at 09:36:52PM -0700, Erik Berls wrote:
> Do we have anything else that maps its functionality?  I'd hate to lose it,
> not that I have time to maintain it.

Some of the functionality could be implemented by giving each lwp a
bit-mask of permissions - each one being like a small part of being root.
So in the simplest scheme they are all set for uid 0, and all clear for
all other processes.

Then it is a SMOP to give additional permissions to a given process, or
for a suid root program to relinquish everything except the specific one
it needs.

In practise I suspect that 'normal' processes would have some permissions
(eg the ability to see all of /proc), and that the system would have some
global masks that would restrict active permissions and the inheriting
of them.

There is 'prior art' in this area, but I suspect the implementation
should not be copied.

	David

-- 
David Laight: david@l8s.co.uk