[Info-vax] Why not reimplement SEVMS into x86 OpenVMS?
Simon Clubley
clubley at remove_me.eisner.decus.org-Earth.UFP
Thu Nov 17 08:12:45 EST 2022
On 2022-11-16, Arne Vajhøj <arne at vajhoej.dk> wrote:
> On 11/16/2022 9:47 AM, Michael C wrote:
>> Offer it free ...
>>
>> Would be fast to port ...
>>
>> Wouldn't that boost security until other features can be added?
>
> If mandatory access control is seen as important for security by
> customers and potential customers then it would make sense.
>
> But I am skeptical.
>
> The common threats today are just so much different than the
> common threats 30 years ago.
>
One major use is for helping to keep attackers contained after a
compromise occurs.
A good example is SELinux which applies this mindset to (by default)
server processes running on a Linux system.
This approach is still _very_ useful, regardless of how the initial
compromise occurred, and whether it was some new or old technique used
to carry out the initial compromise.
Simon.
--
Simon Clubley, clubley at remove_me.eisner.decus.org-Earth.UFP
Walking destinations on a map are further away than they appear.
More information about the Info-vax
mailing list