Right now, MorosOS operates with a philosophy of trust between processes. We need a security architect to come in and come up with some policies to ensure the userland is secure from malicious processes. This includes:
- file permissions
- server permissions (currently, the name server gives out mailbox descriptors to whomever asks for them. It should probably have levels of trust, and have some proxy servers that sanitize requests from untrusted clients.
This is a task I would expect an enthusiast to take on and have some fun with. Please make pretty docs!
Right now, MorosOS operates with a philosophy of trust between processes. We need a security architect to come in and come up with some policies to ensure the userland is secure from malicious processes. This includes:
This is a task I would expect an enthusiast to take on and have some fun with. Please make pretty docs!