Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Draft for hosted cgi

From: Arturo 'Buanzo' Busleiman <buanzo () buanzo com ar>
Date: Fri, 26 May 2006 16:52:01 -0300
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Fyodor wrote:

o Allow raw Nmap commands (with some sanity checking -- we shouldn't
  allow -oN /etc/paswd for example; and obviously we need to be
  careful of shell meta-characters and the like.  we may decide this
  option is too much of a pain to even offer, though I think it would
  be quite useful).  Only the most trusted users would have this
  ability in any case.  But if we can support this, it would be
  valuable.


on-demand chroots/sandbox could be created for each raw nmap execution requested.

And kernel-level security will definitely be useful for protecting files, etc.

- --
Arturo "Buanzo" Busleiman - VPN Mail Project - http://vpnmail.buanzo.com.ar
Consultor en Seguridad Informatica - http://www.buanzo.com.ar

for f in www blog linux-consulting vpnmail; do firefox http://$f.buanzo.com.ar ; done
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFEd1xhAlpOsGhXcE0RAuYTAJ9Ho61grnJzeiOfe65CQCRMHz9EFwCbBu/Z
vHUslql4uI0mfAVUOSPhJC0=
=aYQV
-----END PGP SIGNATURE-----


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Previous By Date Next
Previous By Thread Next

Current thread: