chrootuid: Advanced chroot with the setuid Feature
Web site: ftp://ftp.porcupine.org/pub/security/
Download: ftp://ftp.porcupine.org/pub/security/chrootuid1.2.shar.Z
Version: 1.2
chrootuid is a little utility that runs a program (usually a network service daemon, such as a Web server) in a sandbox. To run in a sandbox means to run in a system compartment, created by the chroot() system call (see the chroot(1M) manual page for more information). chrootuid, in addition to running the program in a chroot sandbox, also sets the process’s user ID (UID) to a specified (usually unprivileged) UID. This approach implements the concept of compartmentalization and increases the security of the system where it is implemented. In case a particular program ...
Get Solaris 8 Security now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.