RE: Ke: Process Capabilities on 2.2.16, Sendmail problem revisited

From: Jesse Pollard (pollard@tomcat.admin.navo.hpc.mil)
Date: Thu Jun 15 2000 - 07:02:45 EST

Next message: Kees Bakker: "kswapd at 96% CPU on my 16Mb system"
Previous message: Juan J. Quintela: "Re: BUG() hit with ramfs usage (v 2.4.0test1-ac18)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

"Joseph Gooch" <mrwizard@psu.edu>:
> Ok last I knew, elfcap only worked with static binaries, stripped all
> symbols, and segfaulted 4 out of 5 programs it was making 'more secure'.
> Unless this has significantly changed, I'm amazed it's even being considered
> as our savior of capabilities.
>
> Feel free to correct me if i'm wrong.

I'm NOT in favor of elfcap. Not a chance. Too many
verification/audit/reliablility/... problems.

-------------------------------------------------------------------------
Jesse I Pollard, II
Email: pollard@navo.hpc.mil

Any opinions expressed are solely my own.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Kees Bakker: "kswapd at 96% CPU on my 16Mb system"
Previous message: Juan J. Quintela: "Re: BUG() hit with ramfs usage (v 2.4.0test1-ac18)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Jun 15 2000 - 21:00:35 EST