Hi, On Thu, Nov 20, 2008 at 02:00:16PM +0100, Arne Babenhauserheide wrote: > Am Dienstag 18 November 2008 04:16:04 schrieb [EMAIL PROTECTED]:
> > It is important though to point out that I only intend to confine > > certain applications which are particularily exposed. > > Which for example could be done globally by putting a translator on > top of the applications binary which has the effect that whenever > someone tries to execute the application, he instead executes "subdo > application". > > Or the same but cleaner :) > > Can a translator be used to do this without using the shell and > "subdo" route? Should be doable; but what's the point? Just use a wrapper script that launches the subenvironment with the application... -antrik-