[wplug] restricted/monitored playground
Vanco, Donald
VANCOD at PIOS.com
Mon Jan 20 09:18:05 EST 2003
> Sometime in January Alexandros Papadopoulos assaulted the keyboard
> and produced:
>
>> Dear all
>>
>> I'll be executing code of questionable behavior on my machine, as
>> part of a security-related assignment.
>>
>> Is there a way of allowing the code to run (e.g. trinity, bo2k etc)
>> and monitoring its activities, without hosing my machine? I thought
>> of creating a special user for this puprose, and then chrooting him
>> in a directory with minimal binaries to work with (ls, car, gdb etc).
>>
>> But I fear that creating a too restricted chrooted jail won't do,
>> because if the tool cannot create network connections or find the
>> necessary libraries, it will obviously malfunction.
>>
>> Is it possible to create a monitored, controlled, virtual playground
>> for executing potentially nasty code on one's machine?
Sounds like user mode linux is what you want:
http://user-mode-linux.sourceforge.net/
Don
More information about the wplug
mailing list