miniblog.
← Back to all posts
Wilfred Hughes
Oct 12, 2018 at 19:13
OpenBSD adds unveil(), a new syscall for restricting filesystem access. Like pledge(), it aims to maximise adoption through having a limited (but very comprehensible) API.
https://lwn.net/Articles/767137/
OpenBSD
One of the key aspects of hardening the user-space side of an operating system is to provide me [...]