Re: [Qemu-devel] syscall filtering

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] syscall filtering

From:	J. Mayer
Subject:	Re: [Qemu-devel] syscall filtering
Date:	Tue, 23 Nov 2004 23:40:48 +0100

On Tue, 2004-11-23 at 15:19, Magnus Damm wrote:
> Hello,
> 
> While Piotrek is thinking about securing the system emulator, I am more
> interested in syscall filtering. I have not thought about it too much,
> but the idea (if possible) would be to run qemu as a filter for certain
> binaries on your machine. Basically, you run i386-user with filters on a
> i386 machine.

What about systrace ?
http://www.citi.umich.edu/u/provos/systrace/index.html

You never need an emulator to filter syscalls on Unix: take a look to
ptrace syscall, especially PTRACE_SYSCALL request, all needed features
are already there...
-- 
J. Mayer <address@hidden>
Never organized

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] syscall filtering, Magnus Damm, 2004/11/23
- Re: [Qemu-devel] syscall filtering, Paul Brook, 2004/11/23
- Re: [Qemu-devel] syscall filtering, J. Mayer <=
  - [Qemu-devel] Re: syscall filtering, Ben Pfaff, 2004/11/23
  - Re: [Qemu-devel] syscall filtering, Philipp Gühring, 2004/11/24

Prev by Date: Re: [Qemu-devel] building a virus-proof PC with Qemu
Next by Date: Re: [Qemu-devel] building a virus-proof PC with Qemu
Previous by thread: Re: [Qemu-devel] syscall filtering
Next by thread: [Qemu-devel] Re: syscall filtering
Index(es):
- Date
- Thread