Manux – A free Linux-compatible OS designed to withstand attacks in userspace

Spent a while on the weekend reading about the seL4 kernel, which uses capability based security and has end to end mathematical proofs of correctness on the compiler and underlying kernel. Its predecessors are used in Apple&#x27;s A7 and Qualcomm&#x27;s chips.<p>Watching <a href="https://www.youtube.com/watch?v=lRndE7rSXiI" rel="nofollow">https:&#x2F;&#x2F;www.youtube.com&#x2F;watch?v=lRndE7rSXiI</a> and it says that it&#x27;s mathematically impossible for seL4 to suffer from things such as buffer overflows.<p>I&#x27;m faaaaaar out of my field here... but this sounds as like a far better improvement in security compared to running things in a chroot. Apart from it being really new (there&#x27;s just a kernel with a C compiler), would this be a good route to head down for improving security? Why aren&#x27;t we writing a linux port on this?<p>Kernel info here: <a href="http://en.wikipedia.org/wiki/L4_microkernel_family#High_assurance:_seL4" rel="nofollow">http:&#x2F;&#x2F;en.wikipedia.org&#x2F;wiki&#x2F;L4_microkernel_family#High_assu...</a>

&quot;Always reboot electrically into it - don&#x27;t simply reboot; power you computer down, then up again. That&#x27;s because the mouse is not handled, and if you were to touch it, due to hardware technicalities, your keyboard would get stu&quot;<p>&quot;Keyboard would get stu&quot; is just brilliant.<p>Otherwise, what is claimed sounds very impressive, so much that I really wonder &quot;what&#x27;s the catch? There must be some.&quot;

Capability-based OSes have been around for some time, largely developed by the team that produced DRoPS, Fiasco, and other L4 based systems (as tonyhb pointed out).<p>Those advances are mostly from the Dresden OS folks, and the NICTA group (which went on to make one of Qualcomm&#x27;s best kernels, OKL4).<p>seL4 was an attempt to convert the API and specification for the L4 kernel into an executable format (using Haskell) and confirm the specification was solid. The system was then extended to actually test the L4 kernel itself.<p>In the most recent versions, you can run entire device drivers and OS layers under the capability management system. One only needs to look at the Genode tooling (which is the logical continuation of the work started in DRoPS): <a href="http://genode.org/documentation/general-overview/index" rel="nofollow">http:&#x2F;&#x2F;genode.org&#x2F;documentation&#x2F;general-overview&#x2F;index</a><p>Genode, Fiasco.OC, L4 (including seL4), and the work on secure GUIs all deserve to be far more popular than they are.

Any way to get it running in a virtual machine without having a real hard drive to put it on?

Archive: <a href="https://web.archive.org/web/20141228213056/http://manux.info/en/" rel="nofollow">https:&#x2F;&#x2F;web.archive.org&#x2F;web&#x2F;20141228213056&#x2F;http:&#x2F;&#x2F;manux.info...</a>

Is chroot the only protection against a hostile process?

Assuming this is aiming to be a Linux replacement, GPLv3 certainly isn&#x27;t the right choice for a license.