[cap-talk] Any hope in RSA 2008?
Pierre THIERRY
nowhere.man at levallois.eu.org
Fri Apr 4 18:55:59 EDT 2008
Scribit Raoul Duke dies 04/04/2008 hora 13:06:
> things like chroot jails presumably are kinda attempts to get
> independent compartments into traditional swiss-cheese bailing
> situations?
Either they are more like compartments with walls *made* of swiss
cheese, or they prove to be quite tedious to setup, and resource
consuming.
As Unix file systems don't provide attenuation facets like ocaps would,
most jail tools that I know will actually copy all needed files.
Modifications to the originating files must be tracked and propagated,
and a considerable space may be used (although that's less of a concern
with current huge disks, it may be again when we want to switch to
smaller but more reliable flash disks).
> P.S. all i can think of when people say that the independent
> compartments will save us is that the Titanic had that. ha ha. ahem.
> ;-}
But the water had ambient authority to communicate with adjacent
compartments, so they were not really independant.
Water even discovered and used an exploit that enabled any compartment N
to communicate with any compartment J<N when enough compartments 0..I
were filled with water.
Freely,
Pierre
--
nowhere.man at levallois.eu.org
OpenPGP 0xD9D50D8A
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://www.eros-os.org/pipermail/cap-talk/attachments/20080405/60bc1c93/attachment.bin
More information about the cap-talk
mailing list