Date: Mon, 25 May 2020 16:28:48 -0400 From: Ed Maste <emaste@freebsd.org> To: ihor@antonovs.family Cc: freebsd-security@freebsd.org Subject: Re: Malicious root user sandboxing Message-ID: <CAPyFy2ATP5Pyvw2E85iRqfDtPTwPuSq0LQBmt70ZVB4wRNPHpw@mail.gmail.com> In-Reply-To: <9242947.RX05g1dFuk@amos> References: <1641188.rRC0nNcZtX@amos> <CAPyFy2CrM-JGPio4W4GCWDTrFpKnjE9BA3cYHeVLU9ymF%2Bh%2B9Q@mail.gmail.com> <9242947.RX05g1dFuk@amos>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 25 May 2020 at 14:00, Ihor Antonov <ihor@antonovs.family> wrote: > > I was looking at Capsicumizer and it looks very interesting. > The only reason I was hesitant is that this is an external application, not a > FreeBSD core. Is it going to be included in FreeBSD in some distant future? There are no explicit plans at this point and right now I would describe it as a solid proof of concept - it works well, but only a limited amount of functionality is supported by libpreopen. That said, I would be very happy to see it developed further and become a component of FreeBSD.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAPyFy2ATP5Pyvw2E85iRqfDtPTwPuSq0LQBmt70ZVB4wRNPHpw>