Date: Thu, 20 May 2004 23:01:45 +0100 From: Josef Karthauser <joe@FreeBSD.org> To: freebsd-current@freebsd.org Subject: Call for a hacker.... security.bsd.see_other_uids in jails only Message-ID: <20040520220145.GN4567@genius.tao.org.uk>
next in thread | raw e-mail | index | archive | help
--np3HfElajyDBpWGr
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
I was wondering whether someone might help me out.
There's a couple of sysctls in -current:
security.bsd.see_other_uids: 1
security.bsd.see_other_gids: 1
These effectively allow one to prevent users from spying on each
other.
What I need to do is to disable these within jails, but not in the
host enviroment. The reason I need this is that I'm running the
FreeBSD election on a box of mine, but I don't want to have to clear
these globally.
Would someone have the time to hack me a patch to do this? It doesn't
have to be clean, although evenually I'd like to see something like
this committed to freebsd operating on a sysctl.
Many thanks,
joe
p.s. the machine in question is running 5.2.1.
--=20
Josef Karthauser (joe@tao.org.uk) http://www.josef-k.net/
FreeBSD (cvs meister, admin and hacker) http://www.uk.FreeBSD.org/
Physics Particle Theory (student) http://www.pact.cpes.sussex.ac.uk/
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D An eclectic mix of fact an=
d theory. =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
--np3HfElajyDBpWGr
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)
iEYEARECAAYFAkCtKskACgkQXVIcjOaxUBZmKACgoFMPH56Bsp3VD7K/CKYL5uU5
XWgAnRIDXXjt4EndkIbRdM7ylTuKZx78
=zGZ0
-----END PGP SIGNATURE-----
--np3HfElajyDBpWGr--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040520220145.GN4567>