Pledge, and Unveil, in OpenBSD

Cite

Related Material

Berkeley Software Distribution (BSD)

Beck, Bob

Formal Metadata

Title

Pledge, and Unveil, in OpenBSD

Alternative Title

Adventures in OpenBSD pledge: SIGABRT is your friend.

Title of Series

The Technical BSD Conference 2018

Number of Parts

Author

Beck, Bob

License

CC Attribution 3.0 Unported:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.

Identifiers

10.5446/45283 (DOI)

Publisher

Berkeley Software Distribution (BSD)

Release Date

2018

Language

English

Content Metadata

Subject Area

Computer Science

Genre

Conference/Talk

Abstract

A technical discussion of OpenBSD pledge(2), including recent/forthcoming changes. OpenBSD has been integrating pledge(2) into a large portion of the OpenBSD base system. Pledge has not been static however, and has some aspects that are continuing to evolve. in this talk we will review pledge briefly for the uninitiated, and why it exists, as well as discussing where and how pledge has been used in OpenBSD to date. We will discuss how programs are adapted for use with pledge. and examine recent/forthcoming additions of exec/execpromises and pledgepath and how they are used to make programs more secure.