OverviewWhen we need to run a program that we do not totally trust, we really do not want to run the program in our own account, because this untrusted program might modify our files. It is desirable if the operating system can create a new user id for us, and allows us to run the program using this new user id. Since the new user id does not own any file, the program cannot read/modify any file unless the file is world-readable/writable. We will design such a mechanism for Minix in this lab.
Lab Description and Tasks (pdf)
Grading Criteria (.doc)
Time for This Lab: 2 weeks
Students' evaluation after they have finished the lab: (Spring'06)
Updated on 2/1/2006