MiG Runtime Manager Secure hosting of runtime environments without root intervention.

Slides:

Advertisements

Similar presentations

Futures – Alpha Cloud Deployment and Application Management.

Advertisements

Calendar Browser is a groupware used for booking all kinds of resources within an organization. Calendar Browser is installed on a file server and in a.

VGrids Virtual Grids in MiG. Idea Virtual organizations are a central point in the Grid model VO’s share –Resources –Files –Credits A VO is a set of users.

Creating a deployment package Importing a package with IIS Manager Exporting from IIS Manager.

Discovering SQL all rights reserved (c) 2010 agilitator.com INSTALLING MySQL 5.1 Community Server.

Chapter 27 Q and A Victor Norman IS333 Spring 2015.

Performing Software Installation with Group Policy

Mobile Agents for Integrating Cloud-Based Business Processes with On-Premises Systems and Devices Janis Grundspenkis Antons Mislēvičs Department of Systems.

Default: Zoom 65% then screenshot. DB XStudio tests Launcher DB XStudio XAgent tests Backup DB tests Launcher.

Introducing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa.

Block Magic tutorial Software: Install and Instruction.

Website Administration Information Systems 337 Prof. Harry Plantinga.

1 Introduction to Tool chains. 2 Tool chain for the Sitara Family (but it is true for other ARM based devices as well) A tool chain is a collection of.

Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.

Welcome. Who am I? Philip L. Sullivan MCT, MCSE, MCSA Microsoft Certified Trainer for 6 Years Work as a Lead Windows NT\2000\2003 Instructor for Clark.

Eucalyptus Virtual Machines Running Maven, Tomcat, and Mysql.

Session 10 Windows Platform Eng. Dina Alkhoudari.

SUSE Linux Enterprise Server Administration (Course 3037) Chapter 4 Manage Software for SUSE Linux Enterprise Server.

11 MANAGING AND DISTRIBUTING SOFTWARE BY USING GROUP POLICY Chapter 5.

The In’s and Out’s of the IIS 6.0 Migration Tool The In’s and Out’s of the IIS 6.0 Migration Tool Chris Adams Web Platform Supportability Lead Microsoft.

CMSBrownBag,05/29/2007 B.Mangano How to “use” CMSSW on own Linux Box and be happy In this context “use” means: - check-out pre-compiled CMSSW code - run.

Slackware 9.1 Installation First prompt in the installation process.

Guide to Linux Installation and Administration, 2e1 Chapter 7 The Role of the System Administrator.

11 SUPPORTING APPLICATIONS IN WINDOWS XP PROFESSIONAL Chapter 9.

Data Access Worldwide May 16 – 18, 2007 Copyright 2007, Data Access Worldwide May 16 – 18, 2007 Copyright 2007, Data Access Worldwide Build a Rich Development.

What is a port The Ports Collection is essentially a set of Makefiles, patches, and description files placed in /usr/ports. The port includes instructions.

Routing Basics Chapter 8. powered by DJ 1. C HAPTER O BJECTIVES At the end of this Chapter you will be able to:  Understand routing basics. powered by.

Connecting to Linux at UMBC by using Tera Term SSH Presented by David Nardozzi.

DataGRID Testbed Enlargement EDG Retreat Chavannes, august 2002 Fabio HERNANDEZ

Why Use Online Portfolios? (geared for administrators and parents)

Plug-in Architectures Presented by Truc Nguyen. What’s a plug-in? “a type of program that tightly integrates with a larger application to add a special.

One Click Install Melanie Adcock

Week 1 Lecture 1 Oracle Architecture Overview. Learning Objectives Learn about Oracle9i architecture and key Oracle9i software components Discover differences.

PAYware Transact Terminal Interface Manager

VIRTUAL HOSTING WITH PureFTPd And MYSQL (Quota And Bandwidth Management) BY Odoh Kenneth Emeka Sun Yu Patrick Appiah.

Lecture 02 File and File system. Topics Describe the layout of a Linux file system Display and set paths Describe the most important files, including.

FILE SHARING USING SHARED FOLDER WIZARD. OBJECTIVES Determine the Shared Folder Wizard Demonstrate the step-by-step procedure in using the Shared Folder.

LINUX Presented By Parvathy Subramanian. April 23, 2008LINUX, By Parvathy Subramanian2 Agenda ► Introduction ► Standard design for security systems ►

There are two common types of VPS  Managed VPS  unmanaged VPS.  In the managed VPS vender is responsible for all over the maintenance of server means.

Alison Buben Jay Pataky COSC 316.  Main purpose: Penetration Testing ◦ Evaluating the security of a computer by simulating an attack ◦ Showing where.

Use Cases, Issues, Proposed Solutions: Software and Environment Non Privileged User Package Management Francois-Denis Gonthier Kryptiva inc.

Harvesting Free Windows CPU Cycles for Linux Applications using Sandboxing Rasmus Andersen Dept. of Computer Science, University of Copenhagen, Denmark.

ClickOnce Deployment (One-click Deployment)

Guide to Operating Systems, 5th Edition

Fundamental of Databases

Packaging and Deploying Windows Applications

Calendar Browser is fully integrated into SharePoint

Module 4: Managing Access to Resources

Easy ActiveX Access to Pathway Servers

Installation, Configuration, Examples of use

IT Atoumation / Conf. Mgmt...

BIND 10 Open Day Menlo Park, BIND 10 Developers

How to Fix Windows 10 Update Error 0x ?.

BMS EASY RECHARGE AND PLANS FLATFORM Note: This Service Is Specially For Home Users.

Oracle Architecture Overview

Chapter 10: Supporting and Maintaining Desktop Applications

Brief Overview and Security

© copyright Janson Industries 2011

David Mitchell December 21, 2005

IP-Spoofing and Source Routing Connections

CLOUD COMPUTING.

SUSE Linux Enterprise Desktop Administration

Chengyu Sun California State University, Los Angeles

Chapter 8: Security Policy

Tools and Explanations for Mac Beginners

VirgoStaging Status F.Carbognani, S. Cortese, E. Pacaud.

ClickOnce Deployment (One-click Deployment)

How Enterprise Agents can be installed remotely on protected objects

STATEL an easy way to transfer data

Docker and Kubernetes Security in ONAP Pawel Pawlak Amy Zwarico

Presentation transcript:

MiG Runtime Manager Secure hosting of runtime environments without root intervention

Problem We have special runtime environments that are ‘nice to have’ as permanent RE’s but not important enough that system administrators will install them! Generecon is such an application!

Proposal System administrators can choose to create an additional user ‘MiG Package Manager’ All MiG users should share a group We can then install packages with this user and allow group read and execute on these packages

Advantages This is secure –MiG users can use the packages but never change them It is still non-intrusive –First of all it’s optional –Even if the resource does this it’s nothing that does not already exist on the system –And it’s very easy

Path forward Is this the right approach –Anything I have overlooked? This should be limited to the configuration part? Easy?