* [Qemu-devel] syscall filtering
@ 2004-11-23 14:19 Magnus Damm
2004-11-23 14:33 ` Paul Brook
2004-11-23 22:40 ` J. Mayer
0 siblings, 2 replies; 5+ messages in thread
From: Magnus Damm @ 2004-11-23 14:19 UTC (permalink / raw)
To: qemu-devel
Hello,
While Piotrek is thinking about securing the system emulator, I am more
interested in syscall filtering. I have not thought about it too much,
but the idea (if possible) would be to run qemu as a filter for certain
binaries on your machine. Basically, you run i386-user with filters on a
i386 machine.
fakeroot-replacement:
---------------------
fakeroot is nice, but is only working for dynamically linked binaries.
Using the qemu user emulator to filter syscalls would make it possible
to have a fakeroot that works for any binary. As long as the binary
doesn't try to do any root-activities in the kernel that is.
securing scripts:
-----------------
Trojans hiding in configure-scripts, how fun is that? Remember?
http://www.mavetju.org/unix/openssh-trojan.php
By executing the configure script (and all children) in an environment
that detects and disables network activity I would feel safe(r).
/ magnus
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [Qemu-devel] syscall filtering
2004-11-23 14:19 [Qemu-devel] syscall filtering Magnus Damm
@ 2004-11-23 14:33 ` Paul Brook
2004-11-23 22:40 ` J. Mayer
1 sibling, 0 replies; 5+ messages in thread
From: Paul Brook @ 2004-11-23 14:33 UTC (permalink / raw)
To: qemu-devel
On Tuesday 23 November 2004 14:19, Magnus Damm wrote:
> Hello,
>
> While Piotrek is thinking about securing the system emulator, I am more
> interested in syscall filtering. I have not thought about it too much,
> but the idea (if possible) would be to run qemu as a filter for certain
> binaries on your machine. Basically, you run i386-user with filters on a
> i386 machine.
You would also need to add memory access protection. With the current user
emulation it is possible for the emulated appliction to directly modify the
emulator state.
Paul
^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: [Qemu-devel] syscall filtering
2004-11-23 14:19 [Qemu-devel] syscall filtering Magnus Damm
2004-11-23 14:33 ` Paul Brook
@ 2004-11-23 22:40 ` J. Mayer
2004-11-23 22:48 ` [Qemu-devel] " Ben Pfaff
2004-11-24 15:17 ` [Qemu-devel] " Philipp Gühring
1 sibling, 2 replies; 5+ messages in thread
From: J. Mayer @ 2004-11-23 22:40 UTC (permalink / raw)
To: qemu-devel
On Tue, 2004-11-23 at 15:19, Magnus Damm wrote:
> Hello,
>
> While Piotrek is thinking about securing the system emulator, I am more
> interested in syscall filtering. I have not thought about it too much,
> but the idea (if possible) would be to run qemu as a filter for certain
> binaries on your machine. Basically, you run i386-user with filters on a
> i386 machine.
What about systrace ?
http://www.citi.umich.edu/u/provos/systrace/index.html
You never need an emulator to filter syscalls on Unix: take a look to
ptrace syscall, especially PTRACE_SYSCALL request, all needed features
are already there...
--
J. Mayer <l_indien@magic.fr>
Never organized
^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2004-11-24 15:27 UTC | newest]
Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-11-23 14:19 [Qemu-devel] syscall filtering Magnus Damm
2004-11-23 14:33 ` Paul Brook
2004-11-23 22:40 ` J. Mayer
2004-11-23 22:48 ` [Qemu-devel] " Ben Pfaff
2004-11-24 15:17 ` [Qemu-devel] " Philipp Gühring
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).