Date: Fri, 18 Oct 2002 22:35:59 -0400 (EDT) From: Robert Watson <rwatson@FreeBSD.org> To: security@FreeBSD.org Subject: PRIVMAN -- library for privilege separation Message-ID: <Pine.NEB.3.96L.1021018223010.18787C-100000@fledge.watson.org>
next in thread | raw e-mail | index | archive | help
Network Associates Laboratories' CBOSS Project has funded a variety of new things in FreeBSD 5.0 including UFS2, a lot of the TrustedBSD work, etc. That stuff already gets a fair amount of exposure on the FreeBSD side, so I wanted to point people at another project under CBOSS, PRIVMAN. PRIVMAN is a library to make it easier for developers to create privilege separated applications (similar to that used in Cyrus for password checking, OpenSSH for privsep, or in some of the OWL daemons, etc). It's still under development, but we'd welcome any feedback you have to privman@nailabs.com: http://opensource.nailabs.com/privman/ We provide patches against the BSD FTPd, WU-FTPd, and thttpd to demonstrate how the library can be used with existing applications to improve their resistence to attacks. Questions can be directed to Doug Kilpatrick <dougk@tislabs.com> at NAI Labs. Robert N M Watson FreeBSD Core Team, TrustedBSD Projects robert@fledge.watson.org Network Associates Laboratories To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.3.96L.1021018223010.18787C-100000>