Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > comp.os.linux.development.system > #390

Re: Can I put a process in a "network jail", like the "chroot jail"

From Cong Wang <xiyou.wangcong@gmail.com>
Newsgroups alt.os.linux.ubuntu, comp.os.linux.misc, comp.os.linux.development.system
Subject Re: Can I put a process in a "network jail", like the "chroot jail"
Followup-To comp.os.linux.development.system
Date 2012-02-04 07:05 +0000
Organization A noiseless patient Spider
Message-ID <jgilb4$p17$1@wangcong.dont-email.me> (permalink)
References <xL-dnfpkf88-07_TnZ2dnUVZ_jmdnZ2d@giganews.com> <ivv5a8$18k$2@dont-email.me>

Cross-posted to 3 groups.

Followups directed to: comp.os.linux.development.system

Show all headers | View raw

["Followup-To:" header set to comp.os.linux.development.system.]
On Sun, 17 Jul 2011 at 17:14 GMT, Mark Hobley <markhobley@yahoo.donottypethisbit.co> wrote:
> On Sat, 16 Jul 2011 21:53:23 -0500, Ignoramus29044 wrote:
>
>> I also do not want those processes to do connect() and use any
>> networking. And here's where I am lost. Is there some way to drop a
>> process privilege to use networking?
>
> A network jail is a good idea for a new tool.
>

You might want to try Linux containers, LXC.

Back to comp.os.linux.development.system | Previous | NextPrevious in thread | Find similar

Thread

Re: Can I put a process in a "network jail", like the "chroot jail" Mark Hobley <markhobley@yahoo.donottypethisbit.co> - 2011-07-17 17:14 +0000
  Re: Can I put a process in a "network jail", like the "chroot jail" Cong Wang <xiyou.wangcong@gmail.com> - 2012-02-04 07:05 +0000

csiph-web