--On 31 October 2005 23:32 +0100, frantisek holop wrote:
It is really unfortunate that I have never seen a perfect systrace
policy. Not once.
Not even for small programs like ping.
..
hm. does this mean that systrace is not a good idea anymore?
No, it means people are too lazy, too busy, or both, to spend time on
it. Let's look at ping:
-r-sr-xr-x 1 root bin 153344 Sep 7 21:23 /sbin/ping*
setuid root, and it's a command you might well want to have available
to non-admin users. You can clearly define what it should do, and what
parts of the system it should have access to. Only very few parts of it
actually need root: a good example of something to run with systrace's
privilege elevation, eh? Ah...
<http://mail-index.netbsd.org/current-users/2002/10/11/0039.html>
<http://mail-index.netbsd.org/current-users/2002/10/12/0013.html>
i also don't see its main developer around here anymore,
sorry i forgot his name....
$ man systrace
[...]
AUTHORS
The systrace utility was developed by Niels Provos.