chrootuid: Advanced chroot with the setuid Feature

Web site: ftp://ftp.porcupine.org/pub/security/

Download: ftp://ftp.porcupine.org/pub/security/chrootuid1.2.shar.Z

Version: 1.2

chrootuid is a little utility that runs a program (usually a network service daemon, such as a Web server) in a sandbox. To run in a sandbox means to run in a system compartment, created by the chroot() system call (see the chroot(1M) manual page for more information). chrootuid, in addition to running the program in a chroot sandbox, also sets the process’s user ID (UID) to a specified (usually unprivileged) UID. This approach implements the concept of compartmentalization and increases the security of the system where it is implemented. In case a particular program ...

Get Solaris 8 Security now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Solaris 8 Security by Edgar Danielyan

chrootuid: Advanced chroot with the setuid Feature

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly