MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
capabilities
Recherche

Conill: Rethinking sudo with object capabilities

dimanche 14 décembre 2025, 02:07 , par LWN.net
Ariadne Conill is
exploring a capability-based approach to privilege escalation on Linux
systems.

Inspired by the object-capability model, I've been working on a
project named capsudo. Instead of
treating privilege escalation as a temporary change of identity,
capsudo reframes it as a mediated interaction with a service called
capsudod that holds specific authority, which may range
from full root privileges to a narrowly scoped set of capabilities
depending on how it is deployed.
Lire la suite sur LWN.net
https://lwn.net/Articles/1050370/

Voir aussi

capabilities Rethinking sudo with object capabilities OS News13 Dec
conill HPE pumps AI cloud lineup with extra Nvidia capabilities TheRegister 1 Dec
privilege Jeff Bezos’ Project Prometheus move seen as a rethinking of AI IT strategy ComputerWorld18 Nov
capsudo Ubuntu 25.10's Rusty sudo holes quickly welded shut TheRegister13 Nov
escalation Microsoft adds new screen recording capabilities to Sysinternals ZoomIt BetaNews12 Nov
object AWS launches ‘Capabilities by Region’ to simplify planning for cloud deployments InfoWorld 7 Nov
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Date Actuelle
dim. 14 déc. - 06:58 CET