[wplug] restricted/monitored playground
John Harrold
jmh17 at pitt.edu
Sat Jan 18 14:42:24 EST 2003
Sometime in January Alexandros Papadopoulos assaulted the keyboard and produced:
| Dear all
|
| I'll be executing code of questionable behavior on my machine, as part
| of a security-related assignment.
|
| Is there a way of allowing the code to run (e.g. trinity, bo2k etc) and
| monitoring its activities, without hosing my machine? I thought of
| creating a special user for this puprose, and then chrooting him in a
| directory with minimal binaries to work with (ls, car, gdb etc).
|
| But I fear that creating a too restricted chrooted jail won't do,
| because if the tool cannot create network connections or find the
| necessary libraries, it will obviously malfunction.
|
| Is it possible to create a monitored, controlled, virtual playground for
| executing potentially nasty code on one's machine?
|
| Thanks
|
| - -A
i have a friend whos been using this and he think's it's the neatest thing
since sliced bread. i must admit it looks pretty nifty.
http://www.solucorp.qc.ca/miscprj/s_context.hc
--
---------------------------------------------------------------
john harrold | "They that can give up essential
jmh17+maps at pitt.edu | liberty to obtain a little
/"\ | temporary safety deserve neither
\ / ASCII ribbon campaign | liberty nor safety."
X against HTML mail |
/ \ | Benjamin Franklin
---------------------------------------------------------------
gpg --keyserver keys.indymedia.org --recv-key F65A739E
---------------------------------------------------------------
wickets of mass distruction (wmd)
http://www.cricketworldcup.com/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://penguin.wplug.org/pipermail/wplug/attachments/20030118/13c55783/attachment-0001.bin
More information about the wplug
mailing list