Date: Tue, 7 May 2013 14:29:30 -0700 From: Adrian Chadd <adrian@freebsd.org> To: John Baldwin <jhb@freebsd.org> Cc: arch@freebsd.org Subject: Re: Extending MADV_PROTECT Message-ID: <CAJ-Vmo=b1=bq6oBGB9UCGFvgwmOtbaXEaOLoZeXuhQ6zKr4KXw@mail.gmail.com> In-Reply-To: <201305071539.24900.jhb@freebsd.org> References: <201305071433.27993.jhb@freebsd.org> <51894A5B.7060101@freebsd.org> <201305071539.24900.jhb@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 7 May 2013 12:39, John Baldwin <jhb@freebsd.org> wrote: > Well, only root can do it. Even now MADV_PROTECT is a similar foot shooting > device (though not quite as easy to do). You can also get yourself into a heap > of trouble with other things like rtprio, etc., so I sort of think that is up to > the user/administrator to manage. I do think that the more fine-grained priority > approach may be a good way to mitigate that if it really becomes an issue at some > point. This is the kind of thing that begs for a capability. And I'm surprised Robert hasn't chimed in and said just that. However, I think we still lack the ability to do useful capability work from user-space. God I'd like to be wrong on this one. Adrian
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAJ-Vmo=b1=bq6oBGB9UCGFvgwmOtbaXEaOLoZeXuhQ6zKr4KXw>