Scott Ritchie wrote:
Stefan Dösinger wrote:
Am 25.10.2009 um 10:57 schrieb Scott Ritchie:
Many apps don't need to view the user folder for documents but also
employ programmable scripting engines - a good example are games. It
would be much more convenient to pass some sort of "sandbox me, all
Stefan Dösinger wrote:
>
> Am 25.10.2009 um 10:57 schrieb Scott Ritchie:
>> Many apps don't need to view the user folder for documents but also
>> employ programmable scripting engines - a good example are games. It
>> would be much more convenient to pass some sort of "sandbox me, allow
>> netwo
On Sun, Oct 25, 2009 at 2:18 PM, Nicholas LaRoche wrote:
> A specially crafted win32 wine-aware malware app could leverage sys_open(1)
> and sys_write(4) via int 80h to bypass this isolation and install itself
> anywhere in the users home directory.
Yes. That's why I don't think win32-only sandb
Am 25.10.2009 um 10:57 schrieb Scott Ritchie:
Many apps don't need to view the user folder for documents but also
employ programmable scripting engines - a good example are games. It
would be much more convenient to pass some sort of "sandbox me, allow
network, deny home folder access" switch t
2009/10/25 Nicholas LaRoche :
> From a usability standpoint, adding switches to wine for sandboxing is a
> good thing. But it seems to only cover the APIs exported by wine. A
> specially crafted win32 wine-aware malware app could leverage sys_open(1)
> and sys_write(4) via int 80h to bypass this i
Scott Ritchie wrote:
Dan Kegel wrote:
On Sat, Oct 24, 2009 at 10:47 PM, Nicholas LaRoche wrote:
A few months ago there was a topic in wine-devel on the same subject. A
toggle switch for portions of the wine API (i.e. networking), WINEPREFIX,
and SELinux seems to make this a non-issue.
The def
André Hentschel wrote:
> Also fixes Bug 20417
> Sorry, little blackout after vacation in try1...
> ---
> @@ -347,6 +347,12 @@ static void AddApplicationsToList(HWND hWnd, HIMAGELIST
> hList)
>
> while (iter)
> {
> +if(!strlenW(iter->title))
This is the same as "if (!iter->title
On Sun, Oct 25, 2009 at 10:57 AM, Scott Ritchie wrote:
> It would be much more convenient to pass some sort of "sandbox me, allow
> network, deny home folder access" switch to Wine than to muck about with
> stuff like AppArmor profiles.
http://sandboxing.org/ was just formed to discuss such a thi
Dan Kegel wrote:
> On Sat, Oct 24, 2009 at 10:47 PM, Nicholas LaRoche wrote:
>> A few months ago there was a topic in wine-devel on the same subject. A
>> toggle switch for portions of the wine API (i.e. networking), WINEPREFIX,
>> and SELinux seems to make this a non-issue.
>>
>> The default wine
On Sat, Oct 24, 2009 at 10:47 PM, Nicholas LaRoche wrote:
> A few months ago there was a topic in wine-devel on the same subject. A
> toggle switch for portions of the wine API (i.e. networking), WINEPREFIX,
> and SELinux seems to make this a non-issue.
>
> The default wine SELinux configuration f
10 matches
Mail list logo
