Re: [9fans] security

9fans - fans of the OS Plan 9 from Bell Labs
 help / color / mirror / Atom feed

From: Uriel <uriel99@gmail.com>
To: "Fans of the OS Plan 9 from Bell Labs" <9fans@cse.psu.edu>
Subject: Re: [9fans] security
Date: Sun, 28 Oct 2007 19:43:16 +0100	[thread overview]
Message-ID: <5d375e920710281143m5733e766xce46826611a7adf4@mail.gmail.com> (raw)
In-Reply-To: <a510ec445fbd9ebbf2b8c22eae777dcc@9netics.com>

On 10/28/07, Skip Tavakkolian <9nut@9netics.com> wrote:
> > What if the trojan broke out of that sandbox? Or knows how to
> > import other parts of the namespace into its process? Namespaces
> > on Plan 9 are nice, but they absolutely do not constitute a safe
> > sandbox. Boo easy answers.
>
> i know that you know about RFNOMNT; but sure there could be a kernel
> bug or more likely a bug in the sanxbox code.  that would be a flaw,
> not a malicious trojan horse put in - presumably by the author of the
> sandbox?! - for that purpose.  any scheme has its holes which are
> usually exposed by random events.
>
> what's the cost of security and what's the worth of the data?

I'm still wondering what is the cost of having path be (/bin .) (other
than running scripts actually becoming much faster when access to . is
slow).

For once I'm with don, just because perfect security is impossible
doesn't mean we should stop trying to get closer to it, specially when
the cost (as far as anyone has been able to tell in this case) is
negligible.

What is next? we get rid of file permissions 'because your coworkers
can already pick the pile of papers lying on your desk so you should
trust them anyway.

Seeing this kinds of arguments is quite sad, specially given how far
ahead plan9 is from every other system when it comes to *real*
*practical* security.

And I'm an idiot, but this whole discussion has become quite stupid.

uriel

next prev parent reply	other threads:[~2007-10-28 18:43 UTC|newest]

Thread overview: 50+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2007-10-26 22:38 [9fans] grap retarded?? Pietro Gagliardi
2007-10-26 23:17 ` geoff
2007-10-26 23:22   ` Pietro Gagliardi
2007-10-27  2:51   ` [9fans] detecting spam arisawa
2007-10-27  3:16     ` Pietro Gagliardi
2007-10-27  4:38       ` [9fans] security erik quanstrom
2007-10-27  9:03         ` roger peppe
2007-10-27 10:04           ` arisawa
2007-10-27 12:48             ` Uriel
2007-10-27 14:54           ` erik quanstrom
2007-10-27 17:19         ` Tim Newsham
2007-10-27 19:18           ` erik quanstrom
2007-10-27 22:20             ` don bailey
2007-10-27 22:25               ` Pietro Gagliardi
2007-10-27 22:33                 ` don bailey
2007-10-28  0:17                 ` David Leimbach
2007-10-28  6:00                   ` Skip Tavakkolian
2007-10-28  6:06                     ` john
2007-10-28  8:32                     ` Joel C. Salomon
2007-10-28 20:53               ` Charles Forsyth
2007-10-27 23:40             ` Skip Tavakkolian
2007-10-28  6:11               ` don bailey
2007-10-28  6:30                 ` Skip Tavakkolian
2007-10-28  6:42                   ` don bailey
2007-10-28  7:28                     ` Skip Tavakkolian
2007-10-28 12:53                       ` Pietro Gagliardi
2007-10-28 15:52                         ` don bailey
2007-10-28 15:51                       ` don bailey
2007-10-28 15:59                         ` Iruata Souza
2007-10-28 16:30                           ` don bailey
2007-10-28 17:14                             ` Iruata Souza
2007-10-28 17:22                             ` Gabriel Diaz
2007-10-28 17:44                               ` Pietro Gagliardi
2007-10-28 20:37                           ` Charles Forsyth
2007-10-28 16:10                         ` erik quanstrom
2007-10-28 16:26                           ` don bailey
2007-10-28 18:30                         ` Skip Tavakkolian
2007-10-28 18:43                           ` Uriel [this message]
2007-10-28 18:58                             ` Iruata Souza
2007-10-28 22:48                             ` arisawa
2007-10-28 23:29                               ` Pietro Gagliardi
2007-10-29  2:30                               ` Skip Tavakkolian
2007-10-27  9:00       ` [9fans] detecting spam roger peppe
2007-10-27 13:16         ` Pietro Gagliardi
2007-10-27 13:41           ` erik quanstrom
2007-10-27 13:43             ` Pietro Gagliardi
2007-10-27 14:04           ` Martin Neubauer
2007-10-29 10:10 ` [9fans] grap retarded?? Douglas A. Gwyn
2007-10-29 18:43   ` Pietro Gagliardi
2007-10-29 10:10 ` Douglas A. Gwyn

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=5d375e920710281143m5733e766xce46826611a7adf4@mail.gmail.com \
    --to=uriel99@gmail.com \
    --cc=9fans@cse.psu.edu \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).