Sign in to follow this  
Prune

Sandboxing?

Recommended Posts

I want to run some plugins as separate processes in a sandbox, and I'm hoping for a cross-platform solution (or rather, Windows and Linux). Trying to adapt NaCl seems overkill and a huge amount of work and I'm not working on a browser anyway, yet other solutions I've seen seem to only be for Linux (specifically, <a href="http://pdos.csail.mit.edu/~baford/vm/">Vx32</a>). Windows' security tokens and mandatory integrity levels doesn't seem to be very fine-grained, as I want a security model of granting access to a whitelist of system calls and blocking or redirecting all others. Same thing with SE Linux which also has the disadvantage of being setup by a system admin rather than programmatically.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

Sign in to follow this