tarcieri
commented
4 years ago Interesting and potentially relevant article on a pid1 process built using async/await:
Open bluejekyll opened 4 years ago
tarcieri
commented
4 years ago Interesting and potentially relevant article on a pid1 process built using async/await:
bluejekyll
commented
4 years ago Very cool, here's the project: https://github.com/snoyberg/pid1-rust-poc
I don't see a license right now, but that is a great article (just skimmed it).
bluejekyll
commented
4 years ago A recent exploit we should try to bake in as something not possible: https://knight.sc/reverse%20engineering/2019/10/31/macos-catalina-privilege-escalation.html
Launcher is the only privileged Process in Vermilion.
In a military, this would be akin to the commander in charge of launching nuclear missiles (not that we ever want Vermilion ever used in this capacity). It is only their job to verify the request is authentic and not to determine the correctness or motivation behind the request. If the request is valid, it should be carried out (though all us humans would definitely prefer anyone in that position to ignore that command, and in this model, that is up to the Supervisor to determine).
Requirements:
Notes: