System and method for using sandboxes in a managed shell
First Claim
Patent Images
1. A computer implemented method for executing a shell script in a managed environment, comprising:
- recognizing one or more shell tools of the shell script;
identifying whether one or more security policies related to the one or more recognized shell tools exists;
dynamically creating a sandbox for enforcing the identified security policies within the managed environment for the execution of the shell script.
3 Assignments
0 Petitions
Accused Products
Abstract
The present invention allows shell program to be managed with security policies and enforced using sandboxes enforced by the security manager of a managed environment. The additional security policies may come from shell tool specific security policies, application specific security policies, resource based security policies, shell based policies, owner based policies, user based policies and/or other types of policies. Security policies may be merged to provide a managed shell more permission granularity in addition to existing machine policies.
158 Citations
26 Claims
-
1. A computer implemented method for executing a shell script in a managed environment, comprising:
-
recognizing one or more shell tools of the shell script;
identifying whether one or more security policies related to the one or more recognized shell tools exists;
dynamically creating a sandbox for enforcing the identified security policies within the managed environment for the execution of the shell script. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A computer system for executing shell scripts in a managed environment including:
-
the managed environment recognizing one or more shell tools of the shell script;
a security manager identifying whether one or more security policies related to the one or more recognized shell tools exists;
the managed environment dynamically creating a sandbox for enforcing the identified security policies within the managed environment for the execution of the shell script. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
-
Specification