Date: Fri, 20 Feb 2004 04:52:00 -0800 (PST) From: Pawel Jakub Dawidek <pjd@FreeBSD.org> To: mooneer@translator.cx, pjd@FreeBSD.org, freebsd-bugs@FreeBSD.org Subject: Re: kern/48198: Non-jailed users can kill processes owned by same UID Message-ID: <200402201252.i1KCq01Z010706@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
Synopsis: Non-jailed users can kill processes owned by same UID State-Changed-From-To: open->closed State-Changed-By: pjd State-Changed-When: Pią 20 Lut 04:42:35 2004 PST State-Changed-Why: This is an expected behaviour. Administrator have to be aware about this and don't create user accounts outside the jail with the same UIDs as accounts inside the jail. Exactly the same problem exists with file system objects and this can't be sloved in this way, because no information about jail exists in file's inode and users outside of jail aren't chrooted. If one is running virtuals servers with jail and with regular users inside those servers, there should be no users accounts on this machine outside jails. http://www.freebsd.org/cgi/query-pr.cgi?pr=48198
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200402201252.i1KCq01Z010706>