I've prototyped an enhancement: the method script which launches the depot will now relinquish a substantial number of unneeded privileges. This is context-aware, dropping more privileges for depots running read-only.
http://cr.opensolaris.org/~dp/pkg-priv/ I'd like feedback on this idea. I've implemented it, it seems to work. Whether it's the right approach for the long term or whether it fits the "correct SMF way to do things"-- since we could specify privs via method contexts-- I'm not sure. I do think it will bolster our security in the short term. Stephen, Shawn & Brock I would like you to take a look. -dp -- Daniel Price - Solaris Kernel Engineering - [EMAIL PROTECTED] - blogs.sun.com/dp _______________________________________________ pkg-discuss mailing list pkg-discuss@opensolaris.org http://mail.opensolaris.org/mailman/listinfo/pkg-discuss
