Init Config Security

[Nobody III]

It seems that with the init config files generated by the run scripts, if
any server/driver is compromised, it can take over the system, by
requesting access to important services, such as those in the
<parent-provides> section. It seems that to make init's config secure, one
would have to explicitly name every service needed by a server and deny
access to all others. Am I correct? If not, please enlighten me.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.genode.org/pipermail/users/attachments/20141105/14873b67/attachment.html>