|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Email marketing company gives out questionable security advice
From: Roland Dowdeswell (elric
imrryr.org)
Date: Mon Jul 07 2003 - 13:52:41 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On 1057360640 seconds since the Beginning of the UNIX epoch
"D. J. Bernstein" wrote:
>
>P.S. It's hard for a portable chroot tool to cut off a program's network
>access. Kernel designers should provide a disablenetwork() syscall, with
>the disabling inherited by children. Other kernel changes would be nice,
>but disablenetwork() is the only critical change.
There are tools such as systrace:
http://www.citi.umich.edu/u/provos/systrace/
which comes standard in NetBSD and OpenBSD and has been ported to
various other UNIX platforms which can do what you want.
--
Roland Dowdeswell http://www.Imrryr.ORG/~elric/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]