|
From: | Cameron Patrick |
Subject: | Re: [Gnu-arch-users] Arch Roadmap Draft (the anticipated part 3) |
Date: | Wed, 7 Jul 2004 14:17:27 +0800 |
User-agent: | Mutt/1.5.5.1+cvs20040105+cjp-1i |
James Blackwell wrote: > What do you think about a ulimited, chrooted shell? That could still potentially do nasty things over the network. Something like User Mode Linux or FreeBSD's jail would be more secure. Another possibility that I've seen used quite successfully (in an on-line judging system for a programming competition) is to ptrace the process and intercept every system call and make sure that it isn't doing anything untoward. I think that it would be a massive waste of effort in this case, though. Cameron.
[Prev in Thread] | Current Thread | [Next in Thread] |