|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Sandboxing
From: mal content (artifact.one
googlemail.com)
Date: Wed Nov 08 2006 - 06:41:52 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On 08/11/06, mal content <artifact.onegooglemail.com> wrote:
> Hi.
>
> This is mostly hypothetical, just because I want to see how knowledgeable
> people would go about achieving it:
>
> I want to sandbox Mozilla Firefox. For the sake of example, I'm running it
> under my own user account. The idea is that it should be allowed to
> connect to the X server, it should be allowed to write to ~/.mozilla and
> /tmp.
>
> I expect some configurations would want access to audio devices in
> /dev, but for simplicity, that's ignored here.
>
> All other filesystem access is denied.
>
> Ready...
>
> Go!
>
> MC
>
I forgot to add: Use of TrustedBSD extensions is, of course, allowed.
_______________________________________________
freebsd-securityfreebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribefreebsd.org"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]