Re: [RFC v2 00/10] Landlock LSM: Unprivileged sandboxing

From: Andy Lutomirski
Date: Tue Aug 30 2016 - 15:55:33 EST

Next message: RAGHAVENDRA GANIGA: "[PATCH] rtc: changed raw spi calls to register map calls"
Previous message: Rob Herring: "Re: [PATCH] mfd: arizona: Add DT options for max_channels_clocked and PDM speaker config"
In reply to: MickaÃl SalaÃn: "Re: [RFC v2 00/10] Landlock LSM: Unprivileged sandboxing"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Aug 30, 2016 at 12:51 PM, MickaÃl SalaÃn <mic@xxxxxxxxxxx> wrote:
>
> On 30/08/2016 18:06, Andy Lutomirski wrote:
>> On Thu, Aug 25, 2016 at 3:32 AM, MickaÃl SalaÃn <mic@xxxxxxxxxxx> wrote:
>>> Hi,
>>>
>>> This series is a proof of concept to fill some missing part of seccomp as the
>>> ability to check syscall argument pointers or creating more dynamic security
>>> policies. The goal of this new stackable Linux Security Module (LSM) called
>>> Landlock is to allow any process, including unprivileged ones, to create
>>> powerful security sandboxes comparable to the Seatbelt/XNU Sandbox or the
>>> OpenBSD Pledge. This kind of sandbox help to mitigate the security impact of
>>> bugs or unexpected/malicious behaviors in userland applications.
>>
>> MickaÃl, will you be at KS and/or LPC?
>>
>
> I won't be at KS/LPC but I will give a talk at Kernel Recipes (Paris)
> for which registration will start Thursday (and will not last long). :)

There's a teeny tiny chance I'll be there. I've done way too much
traveling lately.

Next message: RAGHAVENDRA GANIGA: "[PATCH] rtc: changed raw spi calls to register map calls"
Previous message: Rob Herring: "Re: [PATCH] mfd: arizona: Add DT options for max_channels_clocked and PDM speaker config"
In reply to: MickaÃl SalaÃn: "Re: [RFC v2 00/10] Landlock LSM: Unprivileged sandboxing"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]