Changes between Initial Version and Version 1 of FutureHaiku/Security
- Timestamp:
- Sep 23, 2018, 6:04:15 PM (6 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
FutureHaiku/Security
v1 v1 1 == Low-Hanging Fruit == 2 3 * Audit all syscalls & ioctls (_control) for privilege checks. 4 * _area functions probably need a lot of thinking here 5 * Run the userland as a non-privileged user 6 * Don't allow opening files by inode (requires ABI break) 7 * Fuzz all in-tree parsers 8 * driver settings format 9 * message 10 * rdef 11 12 13 == Moderate == 14 15 * {{{W^X}}} 16 17 == Advanced == 18 19 * [https://www.openbsd.org/papers/eurobsdcon2018-rop.pdf OpenBSD on mitigating ROP gadgets]
