<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<TITLE></TITLE>
<STYLE type=text/css>BODY {
MARGIN: 5px; BACKGROUND-COLOR: #ffffff
}
HR {
COLOR: #000000
}
BODY {
FONT-WEIGHT: normal; FONT-SIZE: 9pt; COLOR: #000000; FONT-STYLE: normal; FONT-FAMILY: 'Courier New'; TEXT-DECORATION: none
}
TABLE {
FONT-WEIGHT: normal; FONT-SIZE: 9pt; COLOR: #000000; FONT-STYLE: normal; FONT-FAMILY: 'Courier New'; TEXT-DECORATION: none
}
SPAN.RVTS1 {
FONT-WEIGHT: bold; FONT-SIZE: 10pt; COLOR: #0000ff; FONT-FAMILY: 'Arial'
}
SPAN.RVTS2 {
FONT-WEIGHT: bold; FONT-SIZE: 10pt; COLOR: #000080; FONT-FAMILY: 'Arial'
}
SPAN.RVTS3 {
FONT-SIZE: 10pt; COLOR: #800000; FONT-STYLE: italic; FONT-FAMILY: 'Arial'
}
A.RVTS4 {
FONT-SIZE: 10pt; COLOR: #008000; FONT-FAMILY: 'Arial'; TEXT-DECORATION: underline
}
SPAN.RVTS4 {
FONT-SIZE: 10pt; COLOR: #008000; FONT-FAMILY: 'Arial'; TEXT-DECORATION: underline
}
A.RVTS5 {
FONT-SIZE: 10pt; COLOR: #008000; FONT-FAMILY: 'Arial'; TEXT-DECORATION: underline
}
SPAN.RVTS5 {
FONT-SIZE: 10pt; COLOR: #008000; FONT-FAMILY: 'Arial'; TEXT-DECORATION: underline
}
A.RVTS6 {
COLOR: #0000ff; TEXT-DECORATION: underline
}
SPAN.RVTS6 {
COLOR: #0000ff; TEXT-DECORATION: underline
}
SPAN.RVTS7 {
COLOR: #0000ff
}
SPAN.RVTS8 {
COLOR: #0000ff
}
SPAN.RVTS9 {
COLOR: #000080
}
SPAN.RVTS10 {
FONT-SIZE: 8pt; COLOR: #838383; FONT-STYLE: italic; FONT-FAMILY: 'arial'
}
A.RVTS11 {
FONT-SIZE: 8pt; COLOR: #0000ff; FONT-FAMILY: 'arial'; TEXT-DECORATION: underline
}
SPAN.RVTS11 {
FONT-SIZE: 8pt; COLOR: #0000ff; FONT-FAMILY: 'arial'; TEXT-DECORATION: underline
}
P {
PADDING-RIGHT: 0px; PADDING-LEFT: 0px; PADDING-BOTTOM: 0px; MARGIN: 0px; TEXT-INDENT: 0px; PADDING-TOP: 0px; TEXT-ALIGN: left
}
UL {
PADDING-RIGHT: 0px; PADDING-LEFT: 0px; PADDING-BOTTOM: 0px; MARGIN: 0px; TEXT-INDENT: 0px; PADDING-TOP: 0px; TEXT-ALIGN: left
}
OL {
PADDING-RIGHT: 0px; PADDING-LEFT: 0px; PADDING-BOTTOM: 0px; MARGIN: 0px; TEXT-INDENT: 0px; PADDING-TOP: 0px; TEXT-ALIGN: left
}
.RVPS1 {
WHITE-SPACE: normal; TEXT-ALIGN: center
}
</STYLE>
<META content="MSHTML 6.00.2900.3059" name=GENERATOR></HEAD>
<BODY>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN class=187511421-20022007>There
is something called "sandboxie" that seems to do this same kind of thing.
Programs run inside the sandbox</SPAN></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN class=187511421-20022007>can
read whatever you allow, but writes get done to other directories so that it is
more difficult for a rogue app to corrupt</SPAN></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN
class=187511421-20022007>anything outside the area it is allowed to write to.
</SPAN></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN
class=187511421-20022007></SPAN></FONT> </DIV>
<DIV class=OutlookMessageHeader dir=ltr align=left><FONT face=Tahoma
size=2>-----Original Message-----<BR><B>From:</B>
full-disclosure-bounces@lists.grok.org.uk
[mailto:full-disclosure-bounces@lists.grok.org.uk]<B>On Behalf Of </B>Victor
Krapivin<BR><B>Sent:</B> Tuesday, February 20, 2007 3:54 PM<BR><B>To:</B>
full-disclosure@lists.grok.org.uk<BR><B>Subject:</B> Re: [Full-disclosure]
Searching chroot-like jail for Windows<BR><BR></FONT></DIV>
<P>Hello,</P>
<P><BR></P>
<P><SPAN
class=RVTS7>TB> You can duplicate this behavior by using multiple accounts</SPAN></P>
<P><SPAN
class=RVTS7>TB> and using runas (which is essentially, from what I gather, what</SPAN></P>
<P><SPAN class=RVTS7>TB> winquota does.)</SPAN></P>
<P><BR></P>
<P>Hmm, it is not the same as I see. WinJail also provides way to re-map such
folders like c:\* -> c:\NewPlace\* at file system level for every
application, so such process (and all sub-processes) being accessing to c:\*
files will use files from c:\NewPlace\* for all file operations instead.</P>
<P><BR></P>
<P>So there is most interesting issue from this tool is ability to make
chroot()-like environment, not managing additional permissions ;-) </P>
<P><BR></P>
<P>Best regards,</P>
<P> Victor</P>
<P><SPAN class=RVTS10><BR></SPAN></P><FONT SIZE=3><BR>
<BR>
**********************************************************************<BR>
This transmission may contain information that is privileged, confidential, legally privileged, and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. Although this transmission and any attachments are believed to be free of any virus or other defect that might affect any computer system into which it is received and opened, it is the responsibility of the recipient to ensure that it is virus free and no responsibility is accepted by JPMorgan Chase & Co., its subsidiaries and affiliates, as applicable, for any loss or damage arising in any way from its use. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you.<BR>
**********************************************************************<BR>
</FONT>
</BODY></HTML>