From mboxrd@z Thu Jan 1 00:00:00 1970 From: presotto@plan9.bell-labs.com To: 9fans@cse.psu.edu Subject: Re: [9fans] string to list? MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="upas-pjixxvxknxigtknagkrapmlofb" Message-Id: <20010611014537.27D2D199C0@mail.cse.psu.edu> Date: Sun, 10 Jun 2001 21:45:35 -0400 Topicbox-Message-UUID: b3cf878c-eac9-11e9-9e20-41e7f4b1d025 This is a multi-part message in MIME format. --upas-pjixxvxknxigtknagkrapmlofb Content-Disposition: inline Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit Turning off the ability to use pipes and the environment means you pretty much can't run any programs. Turning of the ability to open /dev/fd doesn't really save anything since you can always dup. The only ones that are really a problem are devproc and devcons. They are used for access to notes and to console i/o. They were left on since devcons protects itself, only the host owner can do anything important, and devproc needs to be linked in anyways so that stuff like notes works. Access to devproc needs to be rethought. I'm not sure the right semantics though. --upas-pjixxvxknxigtknagkrapmlofb Content-Type: message/rfc822 Content-Disposition: inline Received: from plan9.cs.bell-labs.com ([135.104.9.2]) by plan9; Sun Jun 10 19:36:23 EDT 2001 Received: from mail.cse.psu.edu ([130.203.4.6]) by plan9; Sun Jun 10 19:36:22 EDT 2001 Received: from psuvax1.cse.psu.edu (psuvax1.cse.psu.edu [130.203.18.6]) by mail.cse.psu.edu (CSE Mail Server) with ESMTP id 6258F199F7; Sun, 10 Jun 2001 19:36:09 -0400 (EDT) Received: from [130.203.12.17] (galapagos.cse.psu.edu [130.203.12.17]) by mail.cse.psu.edu (CSE Mail Server) with SMTP id 833E4199C0 for <9fans@cse.psu.edu>; Sun, 10 Jun 2001 19:35:30 -0400 (EDT) Received: (qmail 26935 invoked by uid 991); 10 Jun 2001 23:35:28 -0000 Message-ID: <20010610233528.26933.qmail@g.bio.cse.psu.edu> To: 9fans@cse.psu.edu Subject: Re: [9fans] string to list? In-Reply-To: Message from presotto@plan9.bell-labs.com of "Sun, 10 Jun 2001 19:22:54 EDT." <20010610232255.B3019199C0@mail.cse.psu.edu> From: Scott Schwartz Sender: 9fans-admin@cse.psu.edu Errors-To: 9fans-admin@cse.psu.edu X-BeenThere: 9fans@cse.psu.edu X-Mailman-Version: 2.0.1 Precedence: bulk Reply-To: 9fans@cse.psu.edu List-Id: Fans of the OS Plan 9 from Bell Labs <9fans.cse.psu.edu> List-Archive: Date: Sun, 10 Jun 2001 19:35:27 -0400 | You can turn off access to all '#' devices except #{|decp}. Look | at RFNOMNT on rfork. I believe 'rfork m' in rc does an rfork(RFNOMNT). The manpage doesn't mention those exceptions. Why can't you turn off access to them too? --upas-pjixxvxknxigtknagkrapmlofb--