Skip to content

Constable is the authorization server for security system Medusa Voyager that runs in user space

Notifications You must be signed in to change notification settings

MatusKysel/Constable

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

38 Commits
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Constable

This is partially ported version of Constable 64-bit from 32-bit version of Constable. It is still under developement.

Constable is the authorization server for security system Medusa Voyager that runs in user space. It is a process that decides which actions will Medusa permit or not. It is the only process, that is excluded from Medusa. Constable configuration consists of two parts:

  1. Constable configuration
  2. Configuration of rules for security system Medusa

Constable is completely independent from kernel, which is ensured by kernel sending all supported entities to Constable at the start.

Usage

run constable with parameter minimal/constable.conf that blocks all syscalls

constable minimal/constable.conf

At this time, the only supported syscall in Medusa Voyager is symlink

About

Constable is the authorization server for security system Medusa Voyager that runs in user space

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • C 86.7%
  • Roff 11.6%
  • Makefile 1.2%
  • Other 0.5%