Firewall Wizards mailing list archives
Re: COmpare Firewalls
From: Crispin Cowan <crispin () cse ogi edu>
Date: Fri, 10 Sep 1999 19:16:53 +0000
"Kertesz, Imre" wrote:
There has been some good discussion recently on the notion of Application Sandboxing, where rather than monitoring for identifyable threads, application behavior is monitored at the process level. Actually, Sir Dystic of CdC fame and author of the original Back Orifice is supposedly coding a demo of this concept. He has some good explanation on his WinAPI page: http://www.cultdeadcow.com/~sd/windoze.html
At USENIX Security last month, Marcus gave an invited talk that addressed some similar ideas, followed by a technical paper track that I called "Cages" presenting three different approaches for "sandboxing" applications. Get your further information here: http://www.usenix.org/events/sec99/technical.html Crispin
Current thread:
- Re: COmpare Firewalls, (continued)
- Re: COmpare Firewalls Dameon D. Welch (Sep 07)
- RE: COmpare Firewalls Joe Ippolito (Sep 08)
- Re: COmpare Firewalls Dameon D. Welch (Sep 08)
- RE: COmpare Firewalls Joe Ippolito (Sep 09)
- Re: COmpare Firewalls Darren Reed (Sep 09)
- RE: COmpare Firewalls Joe Ippolito (Sep 09)
- Re: COmpare Firewalls Crispin Cowan (Sep 10)
- Re: COmpare Firewalls Darren Reed (Sep 10)