Move security to the features list

The restrict option now enables real sandboxing on the two main
target systems.
master
C. McEnroe 2021-06-28 11:55:07 -04:00
parent ca50352169
commit 54251acae3
1 changed files with 16 additions and 17 deletions

View File

@ -1,5 +1,5 @@
.\" To view this file, run: man ./README.7 .\" To view this file, run: man ./README.7
.Dd May 4, 2021 .Dd June 28, 2021
.Dt README 7 .Dt README 7
.Os "Causal Agency" .Os "Causal Agency"
. .
@ -45,6 +45,16 @@ is highlighted.
Ignore: Ignore:
visibility of filtered messages visibility of filtered messages
can be toggled. can be toggled.
.It
Security:
on
.Fx
and
.Ox ,
the
.Cm restrict
option enables sandboxing
and limits filesystem access.
.El .El
. .
.Ss Non-features .Ss Non-features
@ -98,6 +108,11 @@ provided by either
.Lk https://git.causal.agency/libretls/about LibreTLS .Lk https://git.causal.agency/libretls/about LibreTLS
(for OpenSSL) (for OpenSSL)
or by LibreSSL. or by LibreSSL.
It targets
.Fx ,
.Ox ,
macOS
and Linux.
.Nm .Nm
and and
.Sy libtls .Sy libtls
@ -107,22 +122,6 @@ Check the Repology pages for
and and
.Lk https://repology.org/project/libretls/versions libretls . .Lk https://repology.org/project/libretls/versions libretls .
. .
.Pp
.Nm
targets
.Fx ,
.Ox ,
macOS
and Linux.
On
.Ox ,
.Xr pledge 2
is used to limit system operations,
and with
.Nm Fl R ,
.Xr unveil 2
is used to limit filesystem access.
.
.Bd -literal -offset indent .Bd -literal -offset indent
\&./configure \&./configure
make all make all