Hello everyone,
I'm working on a portable device manager for *nix called vdev, and things are getting stable enough that I'm comfortable talking about it with potential users. When finished, I hope to use it to manage my /dev on Linux, FreeBSD, OpenBSD, and other UNICES. On my Linux installations, I hope for vdev to become a drop-in replacement for udev.
The key improvement vdev offers over udev is that vdev does per-process device access control. With vdev, different processes will see different views of /dev, and a process can only learn that a device file exists (let alone access it) if vdev allows it. Unlike similar features offered by ConsoleKit and systemd-logind, programs do not have to use dbus or a hypothetical "libvdev" to access privileged device files. Instead, vdev implements /dev as a userspace filesystem, allowing it to prevent unauthorized processes by equivocating about its device files.
I've written a design document
here that describes vdev in more detail. I humbly invite the Slackware community for any comments, feedback, or criticisms it has, so I can "design away" problems now instead of hacking them away later.
The source code for vdev is
here. It is dual-licensed under the terms of either the GPLv3+ or the ISC license.
Regards,
Jude