Download the virtual machine image: http://shill.seas.harvard.edu/dist/Shill.ova (1.4GB). This image has Shill pre-installed and can be run with most virtual machine software. We recommend VirtualBox.
The root password is "root". In addition, there is a default user "shill" whose password is "shill". You can find Shill’s source code, including examples, in the "shill" user’s home directory.
The advanced installation instructions assume familiarity with installing and configuring a FreeBSD system.
Shill is currently compatible with FreeBSD version 9.3.0. Shill requires that mounted filesystems support the "multilabel" feature. In particular, Shill cannot be used with the zfs filesystem.
Shill requires patches to the Mandatory Access Control framework to support capability-based sandboxes. To install our modified kernel, clone the ShillBSD git repository, and then build and install the kernel.
Shill requires Racket 6.1, which can be installed from ports or by invoking pkg install racket.
Mounted filesystems should support the "multilabel" feature. You can enable "multilabel" with tunefs -l enable / while in single-user mode.
First, clone the shill git repository. From the top-level directory, compile Shill with make and then install with make install. Installation requires superuser privileges.
To enable Shill’s capability based sandbox, you must activate the Shill kernel module by adding the line shill_load="YES" to the file /boot/loader.conf and rebooting.
Shill is now ready for use.