Permalink
Please
sign in to comment.
Browse files
Merge pull request #735 from trasz/capsicum
Add Capsicum support
- Loading branch information
Showing
with
751 additions
and 9 deletions.
- +28 −0 configure.ac
- +1 −0 docs/Makefile.am
- +30 −0 docs/capsicum.txt
- +7 −0 src/core/Makefile.am
- +456 −0 src/core/capsicum.c
- +15 −0 src/core/capsicum.h
- +9 −0 src/core/core.c
- +13 −0 src/core/log.c
- +21 −4 src/core/network-openssl.c
- +6 −0 src/core/network-openssl.h
- +32 −5 src/core/network.c
- +2 −0 src/core/network.h
- +19 −0 src/core/rawlog.c
- +6 −0 src/fe-common/core/Makefile.am
- +63 −0 src/fe-common/core/fe-capsicum.c
- +7 −0 src/fe-common/core/fe-capsicum.h
- +9 −0 src/fe-common/core/fe-common-core.c
- +14 −0 src/fe-common/core/fe-core-commands.c
- +7 −0 src/fe-common/core/fe-log.c
- +3 −0 src/fe-common/core/module-formats.c
- +3 −0 src/fe-common/core/module-formats.h
| @@ -0,0 +1,30 @@ | ||
| Capsicum is a lightweight OS capability and sandbox framework provided | ||
| by FreeBSD. When built with Capsicum support - which is the default under | ||
| FreeBSD - Irssi can enter a Capsicum capability mode (a sandbox), greatly | ||
| limiting possible consequences of a potential security hole in Irssi | ||
| or the libraries it depends on. | ||
|
|
||
| To make Irssi enter capability mode on startup, add | ||
|
|
||
| capsicum = "yes"; | ||
|
|
||
| to your ~/.irssi/config and restart the client. Alternatively you can | ||
| enter it "by hand", using the "/capsicum enter" command. From the security | ||
| point of view it's strongly preferable to use the former method, to avoid | ||
| establishing connections without the sandbox protection; the "/capsicum" | ||
| command is only intended for experimentation, and in cases where you need | ||
| to do something that's not possible in capability mode - run scripts, | ||
| for example - before continuing. | ||
|
|
||
| There is no way to leave the capability mode, apart from exiting Irssi. | ||
| When running in capability mode, there are certain restrictions - Irssi | ||
| won't be able to access any files outside the directory pointed to by | ||
| capsicum_irclogs_path (which defaults to ~/irclogs/). If you change | ||
| the path when already in capability mode it won't be effective until | ||
| you restart Irssi. Capability mode also makes it impossible to use | ||
| the "/save" command. | ||
|
|
||
| Currently there is no way to use custom SSL certificates. As a workaround | ||
| you can establish connections and enter the capability mode afterwards | ||
| using the "/capsicum enter" command. | ||
|
|
Oops, something went wrong.
0 comments on commit
24ad801