David CARLIER devnexen

## what-is-openbsd.txt
OpenBSD is originally a fork of NetBSD from 1995.
Theo de Raadt who is the founder, was before a NetBSD developer until he eventually resigned due to strong disagreements with the rest of the Core Team.

1/ What makes OpenBSD different from other main *BSD ?

- OpenBSD focuses more on security, striving through the releases to defeat most of incoming attacks and security threats,
rather than pure performances and portability.
- "Softwares will never be perfect" is the main motto from Theo himself, hence it is always an ongoing work. Most of security features are enabled by default, some cannot be possibly disabled (e.g. ASLR).
- Similarly, apart of security, new features are rather applied in the longer term.
- A release every 6 month, a release officially supported for 1 year (security fixes/errata backported).

## example1.c
#include <sys/capsicum.h>
#include <stdio.h>
#include <string.h>
#include <errno.h>

int
main(int argc, char *argv[])
{
	int c, errs;
	u_int mod;

## README.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                devnexen
                / README.md
            
            
              Last active
              May 18, 2017 18:00
            
              
                Capsicum – a lightweigth OS capability and sandbox framework
              
          
    A problem to solve ...


Like many computer software topics, it is all about solving problems.
Security within software is one of the most important parts.
The purpose here is to secure applications to reduce the surface of attack vectors.
Today we will be focusing in one particular solution.

Capsicum – a lightweigth OS capability and sandbox framework

What is Capsicum ?


## linux-seccomp.c
#include <sys/prctl.h>
#include <seccomp.h>

#include <fcntl.h>
#include <unistd.h>
#include <errno.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
	OpenBSD is originally a fork of NetBSD from 1995.
	Theo de Raadt who is the founder, was before a NetBSD developer until he eventually resigned due to strong disagreements with the rest of the Core Team.

	1/ What makes OpenBSD different from other main *BSD ?

	- OpenBSD focuses more on security, striving through the releases to defeat most of incoming attacks and security threats,
	rather than pure performances and portability.
	- "Softwares will never be perfect" is the main motto from Theo himself, hence it is always an ongoing work. Most of security features are enabled by default, some cannot be possibly disabled (e.g. ASLR).
	- Similarly, apart of security, new features are rather applied in the longer term.
	- A release every 6 month, a release officially supported for 1 year (security fixes/errata backported).
	#include <sys/capsicum.h>
	#include <stdio.h>
	#include <string.h>
	#include <errno.h>

	int
	main(int argc, char *argv[])
	{
	int c, errs;
	u_int mod;
	#include <sys/prctl.h>
	#include <seccomp.h>

	#include <fcntl.h>
	#include <unistd.h>
	#include <errno.h>
	#include <stdio.h>
	#include <stdlib.h>
	#include <string.h>