Plash
From Wikipedia, the free encyclopedia
| Plash | |
|---|---|
| Latest release | 1.19 "Anxious Albert" / May 5, 2008 |
| Written in | C, Python |
| OS | Linux |
| License | GNU Lesser General Public License |
| Website | http://plash.beasts.org/ |
From the Plash homepage[1]:
Plash is a system for sandboxing GNU/Linux programs. Plash's aim is to protect you from the programs you run by letting you run them with the minimum authority and privileges they need do do their job -- this is the Principle of Least Authority (POLA). Plash can run programs in a secure, restricted execution environment with access to a limited subset of your files. Plash is geared towards granting authority dynamically. Sandboxes are lightweight and can be created for each instance of a program. A sandboxed program can be given additional rights at runtime via the FilePowerbox GUI.
Plash has been cited as an implementation of a powerbox on the GNU Hurd wiki[2] and by the google-caja project[3].
[edit] See also
- CapDesk
- Bitfrost
- Polaris (computer security)
- Principle of least privilege
- Sandbox (computer security)
- Object-capability model
 |
This software-related article is a stub. You can help Wikipedia by expanding it. |
