On Thursday 12 June 2003 00:38, Kumba wrote:
> MooktaKiNG wrote:
> > OK i feel a bit dumb here. But could someone please explain to me
> > what sandbox is used for?
> >
> > Sorry, this is a bit out of topic, but i can't help my curiosity :-)
>
> I believe it's basically a glibc wrapper, intercepting system calls and
> dropping calls that'd be too dangerous to execute.  Hence its name,
> "Sandbox".
>

It is, it is basically a library that intercepts calls and that is preloaded 
using LD_PRELOAD. It's behaviour is determined by a number of environment 
variables, that might be better documented than they are right now.

Paul

-- 
Paul de Vrieze
Researcher
Mail: pauldv@cs.kun.nl
Homepage: http://www.cs.kun.nl/~pauldv