From owner-freebsd-hackers@FreeBSD.ORG  Sun May 28 14:39:37 2006
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
X-Original-To: freebsd-hackers@freebsd.org
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 7CE8416B44E
	for <freebsd-hackers@freebsd.org>; Sun, 28 May 2006 14:39:37 +0000 (UTC)
	(envelope-from anatoli@aksoft.net)
Received: from 26th.net (26th.net [217.79.183.16])
	by mx1.FreeBSD.org (Postfix) with ESMTP id BEBAB43D46
	for <freebsd-hackers@freebsd.org>; Sun, 28 May 2006 14:39:36 +0000 (GMT)
	(envelope-from anatoli@aksoft.net)
Received: from [192.168.0.26] (td9091c4b.pool.terralink.de [217.9.28.75])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by 26th.net (Postfix) with ESMTP id D8FDB20B418
	for <freebsd-hackers@freebsd.org>;
	Sun, 28 May 2006 16:39:34 +0200 (CEST)
Message-ID: <4479B603.5030303@aksoft.net>
Date: Sun, 28 May 2006 16:38:59 +0200
From: Anatoli Klassen <anatoli@aksoft.net>
User-Agent: Thunderbird 1.5 (Windows/20051201)
MIME-Version: 1.0
To: freebsd-hackers@freebsd.org
References: <4479A99E.8080708@aksoft.net>
	<20060528135012.GB14541@britannica.bec.de>
In-Reply-To: <20060528135012.GB14541@britannica.bec.de>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Re: security.bsd.see_other_uids for jails
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 28 May 2006 14:39:41 -0000

joerg@britannica.bec.de wrote:
> On Sun, May 28, 2006 at 03:46:06PM +0200, Anatoli Klassen wrote:
>> Hi All,
>>
>> if security.bsd.see_other_uids is set to 0, users from the main system 
>> can still see processes from jails if they have (by accident) the save uid.
>>
>> For me it's wrong behavior because the main system and the jail are two 
>> different systems where uids are independent.
> 
> Sorry but you have far bigger security problems if you create such a
> setup. E.g. "users" from the outer system can ptrace the processes in
> the jail with the same uid.
> 

But ptrace uses the same function p_cansee for security check.

Does it mean than "outer" user is more privileged as "jailed" root? Is 
it intended?

Regards,
Anatoli