Re: How to build a secure server with modules written in C/C++?
From: Volker Birk (bumens_at_dingens.org)
Date: 11/22/03
- Previous message: Volker Birk: "Re: execve call inspection with stdout/stderr logging"
- In reply to: Marco Stolpe: "How to build a secure server with modules written in C/C++?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 22 Nov 2003 22:02:49 +0100
Marco Stolpe <x25ugip1@freenet.de> wrote:
> I'm planning to develop a little server software in C/C++. I'd like to
> give it the ability to invoke functions contained in shared libraries
> using dlopen(). The shared libraries might be distributed in the form
> of packages, for example, which have to be installed on the server.
> With regard to security, it's essential that modules contained in one
> package aren't able to access data of another package in memory or on
> the hard disk.
That will not work. For protecting memory, you need processes. For
protecting disk space, you need different UIDs.
VB.
-- X-Pie Software GmbH Postfach 1540, 88334 Bad Waldsee Phone +49-7524-996806 Fax +49-7524-996807 mailto:vb@x-pie.de http://www.x-pie.de
- Previous message: Volker Birk: "Re: execve call inspection with stdout/stderr logging"
- In reply to: Marco Stolpe: "How to build a secure server with modules written in C/C++?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
