Date: Fri, 21 Nov 2003 22:13:13 +1100 From: Peter Jeremy <peterjeremy@optushome.com.au> To: Pawel Jakub Dawidek <nick@garage.freebsd.pl> Cc: phk@freebsd.org Subject: Re: "secure" file flag? Message-ID: <20031121111313.GA71265@server.vk2pj.dyndns.org> In-Reply-To: <20031121095939.GS511@garage.freebsd.pl> References: <20031119003133.18473.qmail@web11404.mail.yahoo.com> <200311201327.29226.wes@softweyr.com> <20031121095939.GS511@garage.freebsd.pl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Nov 21, 2003 at 10:59:40AM +0100, Pawel Jakub Dawidek wrote: >Such "secure" flag for running process could be also implemented with >multiple meanings: Is the "secure" flag intended to protect the process image from the invoking user as well as other users? >1. All freed pages have to be zeroed. >2. All removed files have to be overwritten. >3. Umask for newly created files should be 0077. >4. "secure" flag for newly created files should be forced? >5. ... 5. Modified pages can't be written to swap (unless swap is encrypted). 6. Process get setuid-type treatment of core-dumps and rtld environment etc ... Peter
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031121111313.GA71265>