zlacker

[parent] [thread] 2 comments
1. pjmlp+(OP)[view] [source] 2014-10-09 11:26:20
Sandboxing, where each process is only allowed to use a precise set of system resources.

Any attempt to use anything else leads to termination.

replies(1): >>Touche+V8
2. Touche+V8[view] [source] 2014-10-09 13:42:59
>>pjmlp+(OP)
Which resources are they allowed to use? What defines which resources they are given?
replies(1): >>pjmlp+9g1
◧◩
3. pjmlp+9g1[view] [source] [discussion] 2014-10-10 06:46:15
>>Touche+V8
> Which resources are they allowed to use?

The system administrator at installation time.

> What defines which resources they are given?

Applications just have a request list of what they require.

If the administrator doesn't allow them for the given application modules (executable, dynamic library, function call,...), bad luck.

[go to top]