lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <20030712213031.60968.qmail@cr.yp.to>
Date: 12 Jul 2003 21:30:31 -0000
From: "D. J. Bernstein" <djb@...yp.to>
To: bugtraq@...urityfocus.com
Subject: Re: Email marketing company gives out questionable security advice


I wrote:
: P.S. It's hard for a portable chroot tool to cut off a program's network
: access. Kernel designers should provide a disablenetwork() syscall, with
: the disabling inherited by children.

I've set up a web page http://cr.yp.to/unix/disablenetwork.html
discussing this and surveying the system-specific suggestions that
people have sent to me. Further contributions are welcome.

---D. J. Bernstein, Associate Professor, Department of Mathematics,
Statistics, and Computer Science, University of Illinois at Chicago

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ