[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security stuff



>But not if making it only more secure breaks the majority of binaries.

Personally, I think there's no point in making MiNT's execution of TOS
format binaries more secure.  The OS's API is pretty intimately tied up
with the binary format, and there's little point keeping one the same
if you want to change the other imcompatibly.  If you want more
security, first define (or adopt) a different binary format which is
more amenable to security, and then implement that securely.  Once the
new format is stable, restrict execution of old-format binaries to
root.

If possible, it might be worth using a binary format which gcc already
targets, to reduce implementation costs.

--Charles Briscoe-Smith
White pages entry, with PGP key: <URL:http://alethea.ukc.ac.uk/wp?95cpb4>
PGP public keyprint: 74 68 AB 2E 1C 60 22 94  B8 21 2D 01 DE 66 13 E2