Date: Thu, 11 Oct 2001 13:36:49 +0400 From: void@void.ru To: freebsd-security@FreeBSD.ORG Subject: jail(8) Message-ID: <1544247985.20011011133649@void.ru>
next in thread | raw e-mail | index | archive | help
Good day ! After setting up a virtual enviroment using JAIL(8) I've encountered the following problem: setuid/setgid bit became no more effective. So, this screwed up apache's suexec, passwd(1) and several other apps whose setuidness is nessesary for their normal operation flow. i.e.: jail# chmod u+s /usr/bin/id jail# ls -la /usr/bin/id -r-sr-xr-x 1 root wheel 6744 11 Oct 02:59 /usr/bin/id jail# su admin admin@jail$ /usr/bin/id uid=1000(admin) gid=1000(admin) groups=1000(admin) Is this bug or feature ? If it's a feature, how it can be disabled and how would it affect the virtual machine bounds integrity ? I did not found an appropriate sysctl value or something describing it in jail man pages. /kernel: FreeBSD 4.4-STABLE smp .d To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1544247985.20011011133649>