On Mon, Apr 12, 1999 at 05:37:34PM -0000, John Conover wrote:
> Does supervise(1) provide any protection against unauthorized root
> access for a network program that faults, say, from a buffer overflow?
Supervise just restarts programs AFAIK. How would you design a
program where a parent process protects against bugs in the child
process? Well... I mean in a reasonable size.
I suppose that if you use electric fence and ran the program
underneath it, it would sacrifice a word or two of memory on every
*alloc and protect from buffer overflows by marking large chunks of
memory read-only. That's not a really nice way to do things, but...
--
The 5 year plan:
In five years we'll make up another plan.
Or just re-use this one.
