| dbo:abstract |
Systrace is a computer security utility which limits an application's access to the system by enforcing access policies for system calls. This can mitigate the effects of buffer overflows and other security vulnerabilities. It was developed by Niels Provos and runs on various Unix-like operating systems. Systrace is particularly useful when running untrusted or binary-only applications and provides facilities for privilege elevation on a system call basis, helping to eliminate the need for potentially dangerous setuid programs. It also includes interactive and automatic policy generation features, to assist in the creation of a base policy for an application. Systrace used to be integrated into OpenBSD, but was removed in April 2016 (in favour of pledge post OpenBSD 5.9). It is available for Linux and Mac OS X, although the OS X port is currently unmaintained. It was removed from NetBSD at the end of 2007 due to several unfixed implementation issues. As of version 1.6f Systrace supports 64-bit Linux 2.6.1 via kernel patch. (en) |
| dbo:author |
dbr:Niels_Provos |
| dbo:genre |
dbr:Computer_security |
| dbo:latestReleaseDate |
2009-03-15 (xsd:date) |
| dbo:latestReleaseVersion |
1.6g |
| dbo:operatingSystem |
dbr:Unix-like |
| dbo:wikiPageExternalLink |
http://www.systrace.org/index.php%3F/archives/13-Local-Privilege-Escalation.html http://www.watson.org/~robert/2007woot/ http://undeadly.org/cgi%3Faction=article&sid=20070809201304 http://www.systrace.org/index.php%3F/archives/4-Local-Root-Exploit-on-NetBSD.html |
| dbo:wikiPageID |
827965 (xsd:integer) |
| dbo:wikiPageLength |
5600 (xsd:nonNegativeInteger) |
| dbo:wikiPageRevisionID |
1035742005 (xsd:integer) |
| dbo:wikiPageWikiLink |
dbr:Robert_Watson_(computer_scientist) dbr:Unix-like dbc:OpenBSD dbr:Computer_application dbr:Computer_security dbr:AppArmor dbr:Linux dbr:Mac_OS_X dbr:Setuid dbc:BSD_software dbc:Unix_security-related_software dbr:Buffer_overflow dbr:NetBSD dbr:OpenBSD dbr:Operating_system dbr:Seccomp dbr:System_call dbr:Mandatory_access_control dbr:Niels_Provos dbr:Raw_socket dbr:SELinux dbr:Privilege_elevation |
| dbp:author |
dbr:Niels_Provos |
| dbp:genre |
dbr:Computer_security |
| dbp:latestReleaseDate |
2009-03-15 (xsd:date) |
| dbp:latestReleaseVersion |
1.6 (dbd:gram) |
| dbp:license |
BSD-like (en) |
| dbp:name |
Systrace (en) |
| dbp:operatingSystem |
dbr:Unix-like |
| dbp:wikiPageUsesTemplate |
dbt:Infobox_software dbt:More_citations_needed dbt:More_footnotes dbt:Multiple_issues dbt:Official_website dbt:R dbt:Reflist dbt:Release_date_and_age |
| dbp:wordnet_type |
http://www.w3.org/2006/03/wn/wn20/instances/synset-software-noun-1 |
| dct:subject |
dbc:OpenBSD dbc:BSD_software dbc:Unix_security-related_software |
| gold:hypernym |
dbr:Utility |
| rdf:type |
owl:Thing dbo:Software schema:CreativeWork dbo:Work wikidata:Q386724 wikidata:Q7397 yago:Abstraction100002137 yago:Code106355894 yago:CodingSystem106353757 yago:Communication100033020 yago:Writing106359877 yago:WrittenCommunication106349220 yago:Software106566077 |
| rdfs:comment |
Systrace is a computer security utility which limits an application's access to the system by enforcing access policies for system calls. This can mitigate the effects of buffer overflows and other security vulnerabilities. It was developed by Niels Provos and runs on various Unix-like operating systems. (en) |
| rdfs:label |
Systrace (en) |
| owl:sameAs |
freebase:Systrace wikidata:Systrace https://global.dbpedia.org/id/4vtGA |
| prov:wasDerivedFrom |
wikipedia-en:Systrace?oldid=1035742005&ns=0 |
| foaf:isPrimaryTopicOf |
wikipedia-en:Systrace |
| foaf:name |
Systrace (en) |
| is dbo:wikiPageWikiLink of |
dbr:Sysjail dbr:Application_firewall dbr:AppArmor dbr:Tiger_(security_software) dbr:Linux_Security_Modules dbr:Seccomp dbr:Mandatory_access_control dbr:Niels_Provos |
| is foaf:primaryTopic of |
wikipedia-en:Systrace |