[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Disabling dangerous commands
From: |
Jordi Gutiérrez Hermoso |
Subject: |
Re: Disabling dangerous commands |
Date: |
Fri, 4 Jun 2010 08:06:14 -0500 |
On 4 June 2010 02:20, Francesco Potortì <address@hidden> wrote:
>>Basic restrictions:
> [...]
>>- Run octave with a uid so it doesn't have permission to read/write
>> things it shouldn't. A chroot minimises the amount of stuff which
>> could be affected.
>
> Additionally, you should probably impose limits on cpu and memory
> consumption by using ulimit on Unix
>
Or you could use something like
http://en.wikipedia.org/wiki/OpenVZ