專案描述

RootJail is a small program designed to safely run dangerous or unreliable services. It works like init(8) in that it spawns processes and watches for them. If any dies, it respawns it. If the child is misbehaving, in that it's dieing repeatedly, it is then disabled. Besides doing that, it changes the working directory to that of the service, does a chroot(2) to that directory, changes its uid and gid to the ones the service will run as, and only then executes the service. So, in effect, the service runs under a "root jail", in that it can't access any file outside its directory.

(This Description is auto-translated) Try to translate to Japanese Show Original Description

您的評分
撰寫專案評