I'm ok with focusing on Linux as the prime target for *up*. Though I'm totally t... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		akavel on Oct 24, 2018 \| parent \| context \| favorite \| on: Show HN: Ultimate Plumber – a tool for writing Lin... I'm ok with focusing on Linux as the prime target for up. Though I'm totally trying to think about cross-platform approaches too, obviously.

codetrotter on Oct 24, 2018 [–]

FreeBSD has a capabilities system called “Capsicum”.

https://www.freebsd.org/cgi/man.cgi?capsicum(4)

https://wiki.freebsd.org/Capsicum

https://www.cl.cam.ac.uk/research/security/capsicum/freebsd....

Capsicum is convoluted though.

OpenBSD has pledge and unveil, which from what I have seen are very elegant.

https://man.openbsd.org/pledge.2

https://man.openbsd.org/unveil

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact