Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Firewall Wizards: Re: COmpare Firewalls

Re: COmpare Firewalls

From: Crispin Cowan <crispin_at_cse.ogi.edu>
Date: Fri, 10 Sep 1999 19:16:53 +0000

"Kertesz, Imre" wrote:

> There has been some good discussion recently on the notion of
> Application Sandboxing, where rather than monitoring for identifyable
> threads, application behavior is monitored at the process level.
> Actually, Sir Dystic of CdC fame and author of the original Back Orifice
> is supposedly coding a demo of this concept. He has some good
> explanation on his WinAPI page:
>
> http://www.cultdeadcow.com/~sd/windoze.html

At USENIX Security last month, Marcus gave an invited talk that addressed
some similar ideas, followed by a technical paper track that I called
"Cages" presenting three different approaches for "sandboxing"
applications. Get your further information here:
http://www.usenix.org/events/sec99/technical.html

Crispin
Received on Sep 10 1999

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]