On 11/12/15 01:37, michalzient...@gmail.com wrote:
Hello guys,
Recently i was reading about new OpenBSD security mechanism called pledge(). I
think this is another great idea from OpenBSD. Are you going to make use of it ?
Regards,
Michal Zientara
Pledge is already used within the OpenBSD tree[1], so yes.
On other platforms I can't tell you, since I'm not a developer on either
smtpd or the other platforms, although I reckon it's highly unlikely,
since it's an in kernel implementation. But as Theo stated[2]: someone
smart might be able to build a compatible layer upon seccomp. Just don't
hold your breath.
[1]
http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/smtpd/smtpd.c?rev=1.254&content-type=text/x-cvsweb-markup
[2] http://www.openbsd.org/papers/hackfest2015-pledge/mgp00034.html
--
You received this mail because you are subscribed to misc@opensmtpd.org
To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
