| Fri, 30 Oct 2020 14:19:16 +0000 |
Roy Marples |
privsep: Allow logfile reopening in a chroot
draft
|
| Sat, 03 Oct 2020 17:00:56 +0100 |
Roy Marples |
privsep: We need getsockopt as well as setsockopt on the link socket
draft
|
| Fri, 02 Oct 2020 15:57:01 +0100 |
Roy Marples |
privsep: allow CAP_SETSOCKOPT for route(4) fd.
draft
|
| Sun, 20 Sep 2020 19:09:08 +0100 |
Roy Marples |
privsep: sandbox the launcher process
draft
|
| Sun, 20 Sep 2020 00:35:08 +0100 |
Roy Marples |
privsep: Log if the platform sandbox is unavailable or available
draft
|
| Sat, 19 Sep 2020 20:53:23 +0100 |
Roy Marples |
privsep: Add the SECCOMP BPF sandbox for Linux
draft
|
| Sat, 19 Sep 2020 18:58:52 +0100 |
Roy Marples |
privsep: Fold capsicum and pledge entry points into ps_entersandbox
draft
|
| Sun, 06 Sep 2020 11:58:29 +0100 |
Roy Marples |
privsep: dropprivs can be static
draft
|
| Wed, 10 Jun 2020 04:57:02 +0100 |
Roy Marples |
privsep: control proxy is no longer optional
draft
|
| Tue, 09 Jun 2020 22:39:05 +0100 |
Roy Marples |
privsep: For Linux and Solaris, set RLIMIT_NOFILES to nevents
draft
|
| Tue, 09 Jun 2020 18:25:18 +0100 |
Roy Marples |
privsep: Implement a resource limited sandbox
draft
|
| Fri, 05 Jun 2020 20:24:21 +0100 |
Roy Marples |
privsep: Limit rights generically rather than Capsicum specifc
draft
|
| Fri, 05 Jun 2020 11:12:21 +0100 |
Roy Marples |
privsep: Remove pledges inet and dns from the master process
draft
|
| Tue, 02 Jun 2020 17:48:34 +0100 |
Roy Marples |
privsep: Access the RDM monotic file via IPC
draft
|
| Sun, 24 May 2020 10:30:23 +0000 |
Roy Marples |
privsep: Allow dev plugins to work
draft
|
| Sun, 24 May 2020 05:47:14 +0000 |
Roy Marples |
privsep: Allow Linux to work without needing any mounts
draft
|
| Tue, 19 May 2020 16:19:05 +0100 |
Roy Marples |
privsep: Enable Capsicum for all processes.
draft
|
| Fri, 15 May 2020 20:23:55 +0100 |
Roy Marples |
BPF: Set write filters where supported
draft
|
| Wed, 13 May 2020 20:52:24 +0100 |
Roy Marples |
privsep: Add a generic wrapper for getifaddrs(3)
draft
|
| Tue, 12 May 2020 10:26:35 +0100 |
Roy Marples |
privsep: Handle all file IO in the Priviledged Actioneer
draft
|
| Sun, 10 May 2020 16:09:54 +0100 |
Roy Marples |
privsep: Implement pledge(2) support as found on OpenBSD
draft
|
| Sun, 10 May 2020 12:19:59 +0100 |
Roy Marples |
privsep: Add function for indirect ioctl
draft
|
| Thu, 07 May 2020 20:57:22 +0100 |
Roy Marples |
privsep: Enable capsicum for network facing processes
draft
|
| Mon, 10 Feb 2020 13:26:30 +0000 |
Roy Marples |
spelling: Correct both privilege and separation
draft
|
| Tue, 21 Jan 2020 20:08:56 +0000 |
Roy Marples |
privsep: copy configuration file into chroot
draft
|
| Tue, 21 Jan 2020 16:17:18 +0000 |
Roy Marples |
privsep: chroot the master process
draft
|
| Wed, 15 Jan 2020 14:28:24 +0000 |
Roy Marples |
Implement Anonymity Profiles for DHCP Clients, RFC 7844
draft
|
| Thu, 09 Jan 2020 15:39:18 +0000 |
Roy Marples |
privsep: Delay control startup after starting privsep
draft
|
| Thu, 09 Jan 2020 00:33:03 +0000 |
Roy Marples |
privsep: sa_family_t can be a different size
draft
|
| Wed, 08 Jan 2020 16:07:58 +0000 |
Roy Marples |
privsep: Pad structs out so there are no uninited memory issues
draft
|
| Fri, 03 Jan 2020 13:10:48 +0000 |
Roy Marples |
Welcome to 2020!
draft
|
| Tue, 10 Dec 2019 21:00:58 +0000 |
Roy Marples |
privsep: Enable ARP BPF filtering for interesting addresses
draft
|
| Fri, 29 Nov 2019 01:24:17 +0000 |
Roy Marples |
Whitespace
draft
|
| Thu, 28 Nov 2019 16:41:15 +0000 |
Roy Marples |
privsep: Add support for priviledge separation
draft
|