OSDN -- 开发和下载开源软件
简体中文翻译状态 translation status for zh

RSS
Download List

项目描述

Umbrella is a security mechanism that implements a
combination of Process-Based Access Control (PBAC)
and authentication of binaries through Digital
Signed Binaries (DSB). The scheme is designed for
Linux-based consumer electronic devices ranging
from mobile phones to set-top boxes. Umbrella is
implemented on top of the Linux Security Modules
(LSM) framework. The PBAC scheme is enforced by a
set of restrictions on each process. This policy
is distributed with a binary in form of execute
restrictions and within the program via a
"restricted fork" feature.

系统要求

System requirement is not defined
Information regarding Project Releases and Project Resources. Note that the information here is a quote from Freecode.com page, and the downloads themselves may not be hosted on OSDN.

2005-04-28 15:37
0.7

伞现已完成所有功能。钥匙圈,一个新的FSR的实施,许多性能优化增加了。
标签: Major feature enhancements
Umbrella is now feature complete. The key ring, a
new FSR implementation, and many performance
optimizations were added.

2005-03-16 15:50
0.6

与GNU隐私卫士完全集成身份验证实施的二进制文件。哈希表使用的存储限制已经取代FSR数据结构,它模仿“dentry”在内核结构。伞型系统调用被取消,并于1 / proc文件系统的接口所取代。伞型代码现在完全独立于所有架构和内核颠覆。
标签: Major feature enhancements
Complete integration with GNU Privacy Guard to
authenticate binaries was implemented. Use of hash
tables for storing restrictions has been replaced
by the FSR data structure, which mimics the
"dentry" structs in the kernel. The Umbrella
system call was eliminated and completely replaced
by a /proc filesystem interface. The Umbrella code
is now completely independent of all architectures
and kernel subversions.

2004-11-23 16:15
0.5.1

一些内存分配错误被发现于0.5版本。这些已得到纠正,以及伞修补过的Linux 2.6.9内核已经在系统测试工作超过6天。签署文件,以及如何使用它的小型描述的脚本被添加到分配。
标签: Minor bugfixes
Some memory allocation bugs were found in the 0.5
release. These have been corrected, and an
Umbrella patched Linux 2.6.9 kernel has been
tested on a working system for more than six days.
The script for signing files and a small
description of how to use it were added to the
distribution.

2004-10-07 20:39
0.5

现在可以导入签署的二进制文件的限制。有几个内存分配错误已得到纠正,从而提高稳定性。该代码进行了优化在几个地方。
标签: Major feature enhancements
Now it is possible to import restrictions from signed binaries. Several memory allocation bugs have been corrected, resulting in increased stability. The code has been optimized in several places.

2004-04-01 16:39
0.3

对进程的限制,权力真正开始显示自己。该功能提供额外限制的灵活性,而静态的限制可以确保性能好。伞可以限制分叉新工艺1 mailprogram,访问文件系统的所有,从访问网络。这样,从附件或恶意电子邮件的攻击是可以避免的顺利进行。
标签: Major feature enhancements
The power of restrictions on processes has really
begun to show itself. The additional restrictions
feature provides flexibility, while static
restrictions makes sure that performance is good.
Umbrella could restrict a mailprogram from forking
new processes, from accessing all of the file
system, and from accessing the network. In this
way, attacks from attachments or malformed email
messages could be avoided smoothly.

Project Resources

Project Page 下载: bzip2 下载: CVS 首页 下载: List