Firewall Wizards mailing list archives

Re: COmpare Firewalls

From: Crispin Cowan <crispin () cse ogi edu>
Date: Fri, 10 Sep 1999 19:16:53 +0000

"Kertesz, Imre" wrote:

There has been some good discussion recently on the notion of
Application Sandboxing, where rather than monitoring for identifyable
threads, application behavior is monitored at the process level.
Actually, Sir Dystic of CdC fame and author of the original Back Orifice
is supposedly coding a demo of this concept. He has some good
explanation on his WinAPI page:

http://www.cultdeadcow.com/~sd/windoze.html


At USENIX Security last month, Marcus gave an invited talk that addressed
some similar ideas, followed by a technical paper track that I called
"Cages" presenting three different approaches for "sandboxing"
applications.  Get your further information here:
http://www.usenix.org/events/sec99/technical.html

Crispin

Current thread:

Re: COmpare Firewalls, (continued)
- - - Re: COmpare Firewalls Dameon D. Welch (Sep 07)
    - RE: COmpare Firewalls Joe Ippolito (Sep 08)
    - Re: COmpare Firewalls Dameon D. Welch (Sep 08)
    - RE: COmpare Firewalls Joe Ippolito (Sep 09)
    - Re: COmpare Firewalls Darren Reed (Sep 09)
    - RE: COmpare Firewalls Joe Ippolito (Sep 09)
- Re: COmpare Firewalls Ryan Russell (Sep 06)
- RE: COmpare Firewalls Paul McNabb (Sep 07)
- RE: COmpare Firewalls Ryan Russell (Sep 07)
- RE: COmpare Firewalls Kertesz, Imre (Sep 08)
  - Re: COmpare Firewalls Crispin Cowan (Sep 10)
- RE: COmpare Firewalls Robert Graham (Sep 10)
  - Re: COmpare Firewalls Darren Reed (Sep 10)
- RE: COmpare Firewalls Ryan Russell (Sep 10)
- Re: COmpare Firewalls Robert Graham (Sep 11)