Date: Mon, 2 Apr 2007 00:48:20 +0200 From: "Thijs Eilander" <eilander@myguard.nl> To: "'Stanislav Ochotnicky'" <stanislav.ochotnicky@kmit.sk>, <freebsd-hackers@freebsd.org> Subject: RE: Deny system call using ptrace Message-ID: <01a501c774af$d8939d40$89bad7c0$@nl> In-Reply-To: <460EE276.1020802@kmit.sk> References: <460EE276.1020802@kmit.sk>
next in thread | previous in thread | raw e-mail | index | archive | help
>I'm trying to create sort of user-space access control system based on allowing/denying syscalls. I was able (after a few problems) to start ptracing >program, stop at every enter/exit from system call, inspect arguments etc. What I'm however trying to do, is denying access to syscalls. In linux I was If you are interested in doing some development to make it work, I am porting systrace to FreeBSD but due to time restrictions development is slow. More information about systrace can be found on http://www.citi.umich.edu/u/provos/systrace/ and www.systrace.org I almost finished the kernelpart, it is usable but still needs some fixes and cleaning up, but the userland code needs adding a lot of syscall translations. Regards, Thijs Eilander
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?01a501c774af$d8939d40$89bad7c0$>