[cap-talk] Webbrowser Based OS.
Rob Meijer
capibara at xs4all.nl
Sat Mar 1 05:26:11 EST 2008
On Sat, March 1, 2008 10:51, John McCabe-Dansted wrote:
> 2) We block access to network using systrace. (unless net_cookie
> exists in $HOME/$URL)
I feel the dual uid approach is much more practical for networking also.
Linux iptables and all platforms with ipfw have the possibility to filter
network traffic based on the uid of I think the socket creator.
I've used this approach for a static networking POLP design in cduck, and
on some other projects also. If you pass connected or listeneing sockets
between
uid's you can avoid having to use the ptraceing stuff, and use a common
mechanism for both file and networking access.
Rob
More information about the cap-talk
mailing list