Managing NFS and NIS
How to set up and maintain a Web site (2nd ed.)
How to set up and maintain a Web site (2nd ed.)
Web security & commerce
Web security sourcebook
Official guide to programming with CGI.pm: the standard for building Web scripts
Official guide to programming with CGI.pm: the standard for building Web scripts
Web security: a step-by-step reference guide
Web security: a step-by-step reference guide
Linux Journal
Speculative Security Checks in Sandboxing Systems
IPDPS '05 Proceedings of the 19th IEEE International Parallel and Distributed Processing Symposium (IPDPS'05) - Workshop 17 - Volume 18
MAPbox: using parameterized behavior classes to confine untrusted applications
SSYM'00 Proceedings of the 9th conference on USENIX Security Symposium - Volume 9
SoftwarePot: an encapsulated transferable file system for secure software circulation
ISSS'02 Proceedings of the 2002 Mext-NSF-JSPS international conference on Software security: theories and systems
Flexible and efficient sandboxing based on fine-grained protection domains
ISSS'02 Proceedings of the 2002 Mext-NSF-JSPS international conference on Software security: theories and systems
| Hi-index | 0.00 |
sbox is a CGI wrapper script that allows Web sites to safely grant CGI authoring privileges to untrusted or naive authors. The script increases security in several ways. It changes the process privileges of CGI scripts to match their owners, preventing one script from interfering with another's data files or operations. It establishes configurable ceilings on script resource usage, avoiding intentional or unintentional denial of service attacks. Most importantly, sbox can also be used to run untrusted CGI scripts within a chroot()-ed directory, thereby preventing CGI scripts from accessing sensitive portions of the file system. sbox can be used and redistributed freely. The complete package is available for download at http://stein.cshl.org/WWW/software/sbox/