HOME

TheInfoList



Click Here for Items Related To - Sysjail
OR:
Sysjail on:   [Wikipedia]   [Google]   [Amazon]

sysjail is a defunct user-land virtualiser for systems supporting the
systrace Systrace is a computer security utility which limits an application's access to the system by enforcing access policies for system calls. This can mitigate the effects of buffer overflows and other security vulnerabilities. It was developed by Ni ...
library - as of version 1.0 limited to
OpenBSD OpenBSD is a security-focused, free and open-source, Unix-like operating system based on the Berkeley Software Distribution (BSD). Theo de Raadt created OpenBSD in 1995 by forking NetBSD 1.0. According to the website, the OpenBSD project em ...
,
NetBSD NetBSD is a free and open-source Unix operating system based on the Berkeley Software Distribution (BSD). It was the first open-source BSD descendant officially released after 386BSD was forked. It continues to be actively developed and is a ...
and MirOS. Its original design was inspired by
FreeBSD jail The jail mechanism is an implementation of FreeBSD's OS-level virtualisation that allows system administrators to partition a FreeBSD-derived computer system into several independent mini-systems called ''jails'', all sharing the same kernel, with ...
, a similar utility (although part of the kernel) for
FreeBSD FreeBSD is a free and open-source Unix-like operating system descended from the Berkeley Software Distribution (BSD), which was based on Research Unix. The first version of FreeBSD was released in 1993. In 2005, FreeBSD was the most popular ...
. sysjail was developed and released in 2006 by Kristaps Dzonsons (aka Johnson), a research assistant in
Game theory Game theory is the study of mathematical models of strategic interactions among rational agents. Myerson, Roger B. (1991). ''Game Theory: Analysis of Conflict,'' Harvard University Press, p.&nbs1 Chapter-preview links, ppvii–xi It has appli ...
at the Stockholm School of Economics, and Maikls Deksters.sysjail: OpenBSD "jail" implementation
Kristaps Dzonsons, 2006-05-22,
OpenBSD OpenBSD is a security-focused, free and open-source, Unix-like operating system based on the Berkeley Software Distribution (BSD). Theo de Raadt created OpenBSD in 1995 by forking NetBSD 1.0. According to the website, the OpenBSD project em ...
misc mailing list sysjail was re-written from scratch in 2007 to support emulated processes in jails, limited (initially) to
Linux Linux ( or ) is a family of open-source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991, by Linus Torvalds. Linux is typically packaged as a Linux distribution, which ...
emulation. The project was officially discontinued on 3 March 2009 due to flaws inherent to syscall wrapper-based security architectures. The restrictions of sysjail could be evaded by exploiting race conditions between the wrapper's security checks and kernel's execution of the syscalls. Watson, Robert N. M.
Exploiting Concurrency Vulnerabilities in System Call Wrappers
/ref>


References


External links


sysjail: systrace user-land virtualisation

sysjail (NYCBSDCON2006 presentation)
BSD software Virtualization software Computer security software {{unix-stub