[wplug] restricted/monitored playground
Alexandros Papadopoulos
apapadop at cmu.edu
Sat Jan 18 00:52:05 EST 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Dear all
I'll be executing code of questionable behavior on my machine, as part
of a security-related assignment.
Is there a way of allowing the code to run (e.g. trinity, bo2k etc) and
monitoring its activities, without hosing my machine? I thought of
creating a special user for this puprose, and then chrooting him in a
directory with minimal binaries to work with (ls, car, gdb etc).
But I fear that creating a too restricted chrooted jail won't do,
because if the tool cannot create network connections or find the
necessary libraries, it will obviously malfunction.
Is it possible to create a monitored, controlled, virtual playground for
executing potentially nasty code on one's machine?
Thanks
- -A
- --
http://andrew.cmu.edu/~apapadop/pub_key.asc
3DAD 8435 DB52 F17B 640F D78C 8260 0CC1 0B75 8265
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE+KOuGgmAMwQt1gmURAjh4AJ0bz6OVpwPemoKpZv/bEWixXsZvZACfb/e1
9j1ho0gdFY3GZ4Wn2AjyLMc=
=1zgG
-----END PGP SIGNATURE-----
More information about the wplug
mailing list