Name
Abstract | ||
|---|---|---|
sbox is a CGI wrapper script that allows Web sites to safely grant CGI authoring privileges to untrusted or naive authors. The script increases security in several ways. It changes the process privileges of CGI scripts to match their owners, preventing one script from interfering with another's data files or operations. It establishes configurable ceilings on script resource usage, avoiding intentional or unintentional denial of service attacks. Most importantly, sbox can also be used to run untrusted CGI scripts within a chroot()-ed directory, thereby preventing CGI scripts from accessing sensitive portions of the file system. sbox can be used and redistributed freely. The complete package is available for download at http://stein.cshl.org/WWW/software/sbox/ |
Year | Venue | Field |
|---|---|---|
1999 | USENIX Annual Technical Conference, General Track | World Wide Web,File system,Denial-of-service attack,Computer science,Directory,Download,Software,Data file,Operating system,Scripting language |
DocType | Citations | PageRank |
Conference | 5 | 1.15 |
References | Authors | |
0 | 1 | |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Lincoln D. Stein | 1 | 1555 | 247.25 |