[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Savannah-hackers] submission of Plash - savannah.nongnu.org
|
From: |
mseaborn |
|
Subject: |
[Savannah-hackers] submission of Plash - savannah.nongnu.org |
|
Date: |
Tue, 07 Dec 2004 16:31:27 -0500 |
|
User-agent: |
Mozilla/5.0 (compatible; Konqueror/3.0.0-10) |
A package was submitted to savannah.nongnu.org
This mail was sent to address@hidden, address@hidden
Mark Seaborn <address@hidden> described the package as follows:
License: gpl
Other License: Also LGPL for the parts that are linked into GNU libc.
Package: Plash
System name: plash
Type: non-GNU
Description:
Plash is "the Principle of Least Authority Shell".
Plash is a Unix shell which lets you run Unix programs with access only
to the files and directories they need to run. Programs are given
access to files which were passed as command line arguments.
In order to implement this the filesystem is virtualised. Each
process can have its own namespace -- its own root directory -- which
can contain a subset of your files.
This is implemented by modifying GNU libc and replacing the system
calls that use filenames. For example, open() is changed so that it
sends a message to a file server via a socket. If the request is
successful, the server sends the client a file descriptor via the
socket as a result. Processes are run as the user `nobody', and in a
chroot jail, so that they can't access any files using the usual
system calls, and must go through the file server instead. This
approach doesn't require modifying the kernel at all.
http://www.cs.jhu.edu/~seaborn/plash/plash.html
http://www.cs.jhu.edu/~seaborn/plash/plash-1.0.tar.gz
Other Software Required:
Other Comments:
_______________________________________________
Message sent via/by Savannah
http://savannah.nongnu.org/
- [Savannah-hackers] submission of Plash - savannah.nongnu.org,
mseaborn <=