[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Jailkit-users] Jailing the Python Interpreter - os.kill still killi
Re: [Jailkit-users] Jailing the Python Interpreter - os.kill still killing
Mon, 05 Nov 2007 08:21:11 +0100
Icedove 18.104.22.168pre (X11/20071018)
Gregory Piñero wrote:
> I set up a jailed Python interpreter. It runs under the user:
> jailed_user. The problem I'm having is that one process can still run
> code like this and kill any process running under jailed_user:
> import os
> Where 9132 is another process from the same user i.e., someone elses
> jailed Python session.
> Is there any way to not allow this?
chrooting processes only helps to reduce file access. kill() is not file
access, so normal unix permissions apply. So you'll need to use
different unix users to do this.