Juniper Networks, Inc.
Apparatus, system, and method for secure execution of unsigned scripts

Abstract:

A disclosed method may include (1) identifying a child process that spawned from a parent process running on a computing device, (2) receiving, from the child process, a request to execute an unsigned script on the computing device, (3) determining, in response to the request, whether to override a restriction against executing unsigned scripts by (A) checking an access-control label referenced by the parent process and (B) determining that the access-control label indicates that the parent process has a privilege to override the restriction, (4) imputing, to the child process, the privilege of the parent process to override the, and then (5) executing, on the computing device, the unsigned script despite the restriction due at least in part to the privilege of the parent process having been imputed to the child process. Various other apparatuses, systems, and methods are also disclosed.