O'Reilly logo

Solaris 8 Security by Edgar Danielyan

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

chrootuid: Advanced chroot with the setuid Feature

Web site: ftp://ftp.porcupine.org/pub/security/

Download: ftp://ftp.porcupine.org/pub/security/chrootuid1.2.shar.Z

Version: 1.2

chrootuid is a little utility that runs a program (usually a network service daemon, such as a Web server) in a sandbox. To run in a sandbox means to run in a system compartment, created by the chroot() system call (see the chroot(1M) manual page for more information). chrootuid, in addition to running the program in a chroot sandbox, also sets the process’s user ID (UID) to a specified (usually unprivileged) UID. This approach implements the concept of compartmentalization and increases the security of the system where it is implemented. In case a particular program ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required