]> Sergey Matveev's repositories - stargrave-blog.git/commit
projects / stargrave-blog.git / commit
summary | shortlog | log | commit | commitdiff | tree
(parent: dee1c9b) | patch
NetBSD sandboxing
authorSergey Matveev <stargrave@stargrave.org>
Fri, 14 Nov 2025 07:19:01 +0000 (10:19 +0300)
committerSergey Matveev <stargrave@stargrave.org>
Fri, 14 Nov 2025 07:19:01 +0000 (10:19 +0300)
commit33f601e4fed3a3bae940a5de5ecb4e4c8a1e1460
tree4b825dc642cb6eb9a060e54bf8d69288fbee4904tree
parentdee1c9b14e7a7f2e3d8909df83d3bb42cded43b0commit | diff
NetBSD sandboxing

https://blog.netbsd.org/tnf/entry/gsoc2025_bubblewrap_sandboxing
Прежде его не было, кроме chroot.

А я вот получаю прям удовольствие (24acdbc75c8ffae0b70fc127118df12434767dd1)
от написания Си софта где вовсю делается privsep и privdrop, где общение между
процессами только по Unix SEQPACKET сокетам и всё обмазано Capsicum-ом.
Blog