Implementation and security of a web-based unix programming environment.
The implementation and security provisions ofa web-based Unix environment for C, Java, and shellprogramming are presented. In contrast to a sandbox withlimited functionality, the environment allows full access tothe underlying system, and the user can execute arbitraryUnix commands. System security is provided in multiple lay-ers involving the process environment, file system, networkconfiguration, resource limits, and cryptographic tickets. Al-though implementation details will be presented specificallyfor a Solaris operating system, the techniques are applicableto any Unix system. The environment is implemented usingcommon best practices, an 'old–school' combination of Ccode, Perl, and shell scripts, and is freely available (opensource).
|Main Author:||Perry, Richard.|