That's great, thanx! ------Oryginalna wiadomość------ Od: Martijn van Duren Do: misc@opensmtpd.org DW: michalzient...@gmail.com Temat: Re: Pledge() in smtpd Wysłano: 12 lis 2015 08:27
On 11/12/15 01:37, michalzient...@gmail.com wrote: > Hello guys, > > Recently i was reading about new OpenBSD security mechanism called pledge(). > I think this is another great idea from OpenBSD. Are you going to make use of > it ? > > Regards, > Michal Zientara > > Pledge is already used within the OpenBSD tree[1], so yes. On other platforms I can't tell you, since I'm not a developer on either smtpd or the other platforms, although I reckon it's highly unlikely, since it's an in kernel implementation. But as Theo stated[2]: someone smart might be able to build a compatible layer upon seccomp. Just don't hold your breath. [1] http://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/smtpd/smtpd.c?rev=1.254&content-type=text/x-cvsweb-markup [2] http://www.openbsd.org/papers/hackfest2015-pledge/mgp00034.html b��yǢ��m�+&j)[yƮ�쨹���r��y�h�+ ����kiv��N�����r��zǧu���[h�+ ��칻 �&ޢ���kiv��
