Projects / Papillon


Papillon is a security module designed for the Solaris Operating Environment. It provides security mechanisms and protections that improve the overall security of the system by adding new functionality to the kernel such as a restricted proc, chroot environment protections, secure STDIO file descriptors, restricted symlinks in /tmp, setuid protections, and more. In the current version Papillon supports Solaris (8, 9, and 10) and OpenSolaris running on x86 and SPARC architectures in 32- or 64-bit mode.

Operating Systems

RSS Recent releases

  •  05 Sep 2006 04:21

Release Notes: Support for Solaris 10 and OpenSolaris.

  •  08 Sep 2003 12:41

Release Notes: This release adds support for a rudimentary setuid execution protection whitelist and two security fixes.

  •  29 Apr 2003 04:14

Release Notes: Bug with hard link protection on Solaris 8 and memory allocation were fixed, the init script was moved back to runlevel 2, and a GCC sanity script was added.

  •  14 Apr 2003 14:50

Release Notes: This release corrects a wrong reference in the documentation.

  •  12 Apr 2003 15:40

Release Notes: Support for Solaris 9, new Setuid Execution Protection, and rewritten documentation.

RSS Recent comments

08 Feb 2002 19:23 rieck

Actually this is not a "real" comment, but who cares.

I am really interested in feedback regarding Papillon. As you can
imagine, I can't afford a farm of different Sun boxes to test
this module, actually I can't even afford one multi-processor
Sun box. I am justing testing the code on my Ultra 10, a
a lonely Intel system and some poor Sparc Classics.

So... If you have made any experiences with Papillon, positive
or negative, let me know.



Project Spotlight


A tool to conduct TCP performance analysis.


Project Spotlight


A libpcap, IPFIX, NetFlow, and sFlow IPv4/IPv6 accounting package.