tags:

views:

102

answers:

7
+1  Q: 

What is the safest way to run an executable on Linux?

I am trying to run a program compiled from C code from an unknown source. I want to make sure that the program does not harm my system in anyway. Like for instance, the program might have soemthing like system("rm -rf /") in the source, which is un-detectable, unless the code is thoroughly examined.

I thought of the following 2 ways

  1. Run it inside a VM like VMWare
  2. Build a windows exe on linux and run on wine

Both are not very elegant solutions and I cannot automate them. and also, in case of 1, it can harm the VM.

Any help would be appreciated.

I want to run the program in what we can call a "sandbox".

A: 

Create an user that has write access only to non-critical directories. Run the program as that user. If you are also interested in privacy, consider also restricting its read rights.

Flavius Stef  2010-10-04 22:48:36
A: 

The wikipedia page for chroot may be a good start. It describes chroot and also provides links to a few, more thorough alternatives.

vanza  2010-10-04 22:48:37
A: 

chroot is one possibility if you want to isolate it from everything else but still have an environment for it to run in.

http://en.wikipedia.org/wiki/chroot

https://help.ubuntu.com/community/BasicChroot

birryree  2010-10-04 22:48:45
+1  A: 

You can use something like schroot and chroot the program, but anything of sufficient nastiness will bust out of that.

You best bet is probably a virtual machine (vmware or virtualbox) and taking a snapshot before compiling and running the program. That way you can roll back if something goes horribly wrong.

Dave  2010-10-04 22:49:13
In fact, you should just roll it back after testing anyway, because you might not have noticed what went horribly wrong.
caf  2010-10-05 01:13:22
@caf True, if it's untrusted then it's untrusted. Don't muck about and rollback anyway.
Dave  2010-10-05 12:25:25
Virtual machines are not exactly a secure environment either, if the program being executed knows it's in one.
Jonathan  2010-10-06 15:09:04
+2  A: 

Check out seccomp. It was designed for this use case.

florin  2010-10-04 22:49:42
This is actually very good if it works! I will try to implement this and report here if it works. Thanks @florin!
arbithero  2010-10-05 17:59:04
+1  A: 

Geordi uses a combination of chroot and interception of syscalls to compile and then sandbox arbitrary code.

Roger Pate  2010-10-04 23:02:10
Geordi source has a lot of ideas I can use. Thanks!
arbithero  2010-10-05 00:59:51
A: 

Run it on a non-networked computer that you will re-image once it's done. There is no safe way to run it on a machine and continue to trust that machine afterwards.

Jonathan  2010-10-06 15:09:43
Or, at least, a computer not on a local network.
Jonathan  2010-10-06 15:10:05

related questions

How to transition to Functional Programming
List of the top Programming "shows"
How to contribute code back to an Open Source project?
What is Test Driven Development (TDD)?
pass by reference or pass by value?
Could you recommend a good free project hosting website?
Writing A "Conway's Game of Life" Program
Learning to write a compiler
How can I modify .xfdl files? (Update #1)
Followup: "Sorting" colors by distinctiveness
Followup: Finding an accurate "distance" between colors
Windows Help files - what are the options?
A little diversion into floating point (im)precision, part 1
Internationalization in your projects
Efficiently get sorted sums of a sorted list
Format string to title case
GUI Programming APIs
Using combinations of sets as test data
What books would you recommend for a beginning Software Developer?
The Definitive Guide To Website Authentication
What is your solution to the FizzBuzz problem?
Generate list of all possible permutations of a string
When to use unsigned values over signed ones?
Function for creating color wheels
Fastest way to get value of pi