Rainbow

From OLPC
Revision as of 22:02, 7 September 2007 by Leejc (talk | contribs) (typos, formatting)
Jump to navigation Jump to search

Rainbow is the implementation of the Bitfrost security specification. Rainbow:

  • Negotiates launching activities and creating a secure, minimal environment for their operation inside a 'Container', a way of isolating one activity from another. This includes limiting the scope of Filesystem, Network Access, and CPU time that each activity has access to.
  • Creates a means for Updates to happen in a reliable and secure way.
  • Provides interfaces to VServer and other libraries that make the above possible.

Installing

To install Rainbow:

  1. Enable the OLPC-temp repository by editing /etc/yum.repos.d/olpc-tmp.repo (temporary until packages drift upstream)
  2. Yum install rainbow which installs Rainbow along with its dependencies like pyvserver, python-sqlalchemy, etc.

To enable Rainbow:

  1. Touch the file /etc/olpc-security

To disable Rainbow:

  1. Delete the file /etc/olpc-security

Resources


README

<gitembed>security||rainbow/README||660||1400</gitembed>