Slashdot Mirror

← Back to Stories (view on slashdot.org)

Systrace for Mac OS X

Posted by pudge on Thursday December 19, 2002 @10:52PM from the monkeying-around dept.

Niels Provos writes in that he has added Mac OS X support for Systrace, a sandboxing/application confinement tool that can be used to increase application and service security. It installs a new kernel to support /dev/systrace and the Systrace application, and a Cocoa frontend.

1 of 23 comments (clear)

Min score:

Reason:

Sort:

Re:Kernel vendors by m0rph3us0 · 2002-12-20 15:58 · Score: 2, Troll

Yes, apple has never made inferior products, sort of like Mac OS 9 which had no support for virtual memory (i dont mean a swap file btw) and about as much support for users as DOS. Apple does make products that suck and do have security flaws. How about being able to login to a default OS X machine with out being prompted for a password. Personally I think that SUCKS and it is definately a SECURITY FLAW. Software Update is another example of Apple products with security flaws. Having the source available means finding security flaws sooner rather than later. The faster vulnerabilities are found and patched the less exposure your system recieves to them. How do I know that no where strcpy() or a similarly known insecure function is being used inappropriately in the source for their APIs.