What if, whenever you started an application, it took a snapshot of the file system and only read from that? It would solve the problem of shared libraries it depends on changing or being deleted out from underneath it.
An insecure application started on a filesystem without confidential data would not gain access to confidential data (accidentally) written to the FS while the application is running.
Writes might be only permitted to an application-specific (process specific) directory to which it has a lock.
No comments :
Post a Comment