#26 Ability to run core in a chrooted jail environment

open
nobody
5
2003-04-29
2003-04-29
Anonymous
No

Well I were thinking of a way to chroot the core to a jail where it could run safely. Overnet core is closed source so running it as is could easily lead to system compromize. It is static and running it inside of jail is pretty easy, but the GUI is unable to launch/control it. Could that be implemented in future versions?

--
steel
steeltech@yandex.ru

Discussion

  • Szabo, Akos
    Szabo, Akos
    2003-10-14

    Logged In: YES
    user_id=47148

    Yes, it would be nice!

    Fonya

     
  • Logged In: YES
    user_id=583691

    hmpf, that would cause me a lot of headaches to implement
    in a way that is fail-safe and easy to handle for users.

    I'd rather say that 95% of all GUI users don't even know
    what chroot is, and that the remaining 5% can probably
    come up with a suitable core start script within 5 minutes
    and just start the core manually.

    Also, if you run the core as a non-privileged user and
    your system is set up properly, then I don't quite see the
    security risk.

    Cheers
    -Tim