Miroirs/slackbuilds_ponce
1
0
Fork 0
mirror of https://github.com/Ponce/slackbuilds synced 2024-11-28 10:02:43 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
slackbuilds_ponce/system/pledge
History
..
pledge.info
pledge.SlackBuild
README
slack-desc

README 

pledge is a port of OpenBSD's syscall to Linux by Justine Tunney.
This script builds a shared library (used to be injected via LD_PRELOAD)
and a command line utility to restrict program exection privileges and
limit parameters as maximum niceness, cpu time, virtual memory, file
descriptors, child proccess and individual file sizes.

NOTE:
* pledge help is available via the -h option
* to run pledge at glibc executable load time:
  strace -vff bash -c \
    '_PLEDGE=4194303,0 LD_PRELOAD=/usr/lib64/pledge/sandbox.so ls'