Capsicum

submited 09 November 2018

Imagine an application that can do anything with your data. Literally anything. Imagine an application which can get your private photos and send them over the internet to some external server. In UNIX-like operating systems almost all applications can do that. If you had an exploitable bug in grep(1) somebody would be able to do so. If you had an exploitable bug in cat(1) somebody would be able to do so. When your application has access to all your user data we are talking about ambient authority.

What if you could do stuff another way? What if your application could have only a capability to use the things it really needs to use. What if you grep(1) would have only read-only rights to a file that it’s should parse, and it couldn’t create a network connection or send signals to different processes. This is a capability world which Capsicum implements.

The BSD community linklog
Made a script? Written a blog post? Found a useful tutorial? Share it with the BSD community here or just enjoy what everyone else has found!

Submit

17 October 2019
OpenBSD 6.6 release  

This is 47th release. As in previous releases, 6.6 provides significant improvements, including new features, in nearly all areas of the system.

Dealing with the misunderstandings of what is GhostBSD  

Since the release of 19.09, I have seen a lot of misunderstandings on what is GhostBSD and the future of GhostBSD. GhostBSD is based on TrueOS with FreeBSD 12 STABLE with our twist to it. We are still continuing to use TrueOS for OpenRC, and the new package's system for the base system that is built from ports. GhostBSD is becoming a slow-moving rolling release base on the latest TrueOS with FreeBSD 12 STABLE. When FreeBSD 13 STABLE gets released, GhostBSD will be upgraded to TrueOS with FreeBSD 13 STABLE.

Codebase: Neck Deep - BSD Now 320  

Description: FreeBSD on the Google Pixelbook, Porting NetBSD to the AMD x86-64, ZFS performance really does degrade as you approach quota limits, Fixing up KA9Q-unix, HAMMER2 and fsck for review, the return of startx(1) for non-root users, and more.

16 October 2019
OPNsense 19.7.5 released  

Lots of plugin and ports updates this time with a few minor improvements in all core areas.

15 October 2019
Project Trident moving to Void Linux  

After several months of examination and testing of the various operating systems that are available right now, we have reached a conclusion. Project Trident will rebasing with Void Linux.

14 October 2019
FreeBSD 12.1 Is Near With Libomp Finally In Base, LLD Linker By Default For i386  

FreeBSD 12.1 is near with the first release candidate shipping this weekend. While a point release over the nearly one year old FreeBSD 12.0, it does come with some notable changes in tow.

Project Trident 12-U9 Now Available  

This is the ninth general package update to the STABLE release repository based upon TrueOS 12-Stable.

New Packages: 857 Deleted Packages: 160 Updated Packages: 1682

13 October 2019
KornShell 2020 - Impossible Happens!  

Christmas came early. ksh-2020.0.0 was released.

FreeBSD 12.1 RC1 release announcement  

The FreeBSD RE team has published FreeBSD 12.1 RC1 for general public usage.

load more