From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.33) id 1CWbt0-0003Gk-6M for qemu-devel@nongnu.org; Tue, 23 Nov 2004 09:43:18 -0500 Received: from exim by lists.gnu.org with spam-scanned (Exim 4.33) id 1CWbsz-0003G3-66 for qemu-devel@nongnu.org; Tue, 23 Nov 2004 09:43:17 -0500 Received: from [199.232.76.173] (helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.33) id 1CWbsx-0003Fg-VB for qemu-devel@nongnu.org; Tue, 23 Nov 2004 09:43:16 -0500 Received: from [65.74.133.9] (helo=mail.codesourcery.com) by monty-python.gnu.org with esmtp (TLSv1:DES-CBC3-SHA:168) (Exim 4.34) id 1CWbjp-0005GF-BB for qemu-devel@nongnu.org; Tue, 23 Nov 2004 09:33:49 -0500 From: Paul Brook Subject: Re: [Qemu-devel] syscall filtering Date: Tue, 23 Nov 2004 14:33:46 +0000 References: <1101219555.8458.28.camel@localhost> In-Reply-To: <1101219555.8458.28.camel@localhost> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200411231433.46149.paul@codesourcery.com> Reply-To: qemu-devel@nongnu.org List-Id: qemu-devel.nongnu.org List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: qemu-devel@nongnu.org On Tuesday 23 November 2004 14:19, Magnus Damm wrote: > Hello, > > While Piotrek is thinking about securing the system emulator, I am more > interested in syscall filtering. I have not thought about it too much, > but the idea (if possible) would be to run qemu as a filter for certain > binaries on your machine. Basically, you run i386-user with filters on a > i386 machine. You would also need to add memory access protection. With the current user emulation it is possible for the emulated appliction to directly modify the emulator state. Paul