LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Weekly Edition

Return to the Kernel page

Sponsored link

Vyatta – Linux & Open Source Alternative to Cisco – Advanced Routing, Firewall, VPN, QoS..
Free Download ->

Recent Features

Plugging into GCC

LWN.net Weekly Edition for October 2, 2008

Ubuntu debuts its Upstream Report

openSUSE and the distribution of proprietary software

LPC: What's happening with webcams

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

UidSEC 0.1

From:  Roberto De Ioris <roberto@unbit.it>
To:  linux-security-module <linux-security-module@vger.kernel.org>, linux-kernel <linux-kernel@vger.kernel.org>
Subject:  [ANNOUNCE] UidSEC 0.1
Date:  Sat, 14 Jul 2007 13:31:51 +0200

UidSEC LSM
This module extends the standard UN*X "resource protection" model adding
some features useful for untrusted multiuser systems 

Current features
  * Deny usage of dmesg to unprivileged users 
  * Hide processes of "other users" to unprivileged users (example: sam
    can only see his processes during a 'top' or a 'ps aux') 
  * Deny access to /sys and /config to unprivileged users 
  * Protect usage of bind() syscall using UidBIND 
  * Assign a group that can use dmesg and see all system processes


Download url: http://projects.unbit.it/uidsec/

Patch against 2.6.22 will follow in the next few days

Thanks for testing it

-- 
Roberto De Ioris
http://unbit.it
JID: roberto@jabber.unbit.it

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Copyright © 2007, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds