I am writing a little website to manage a programming competition where contestants upload their code on a server when it is compiled and ran (a little bit like mooshak). I found that sandbox seems a pretty good solution to run the programs in a secure environment where they can't do anything except reading from stdin and writing to stdout.
My problem is that when I run sandbox as the user apache, I get this:
-bash-4.1$ sandbox ls
/usr/bin/sandbox: Permission denied
It does not seem to be blocked by SELinux, since I don't have any audit message following this message. I have no idea why sandbox refuses to execute commands from the apache user.
If I run the same command as root or my user account, I get
/bin/ls: cannot open directory .: Permission denied
which means that sandbox in fact executed ls.
If you have any idea regarding this, I'll be happy to hear it !
Thanks for your help !
Simon
-- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
