Date: Mon, 4 Aug 2003 01:30:14 -0700 (PDT) From: Dmitry Morozovsky <marck@rinet.ru> To: freebsd-bugs@FreeBSD.org Subject: Re: kern/55163: [patch] hide kld system details from jails Message-ID: <200308040830.h748UEuU077742@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR kern/55163; it has been noted by GNATS. From: Dmitry Morozovsky <marck@rinet.ru> To: Yar Tikhiy <yar@FreeBSD.org> Cc: FreeBSD-gnats-submit@FreeBSD.org Subject: Re: kern/55163: [patch] hide kld system details from jails Date: Mon, 4 Aug 2003 12:26:23 +0400 (MSD) On Mon, 4 Aug 2003, Yar Tikhiy wrote: YT> Could you please provide a short rationale YT> for the feature you're proposing? Well, security thru obscurity is not the best technique ;-) However, it seems that reveal too much info about host system for jail user, or even for jail admin, is not always the best. We plan to use it together with Pawel Jakub Dawidek's jailfsstat kernel module. This code path is rare, so no performance problem I think. Any objections? Sincerely, D.Marck [DM5020, MCK-RIPE, DM3-RIPN] ------------------------------------------------------------------------ *** Dmitry Morozovsky --- D.Marck --- Wild Woozle --- marck@rinet.ru *** ------------------------------------------------------------------------
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200308040830.h748UEuU077742>