Date: Mon, 06 Feb 2006 21:29:27 +0100 From: =?ISO-8859-15?Q?Bj=F6rn_K=F6nig?= <bkoenig@cs.tu-berlin.de> To: Andre Oppermann <andre@freebsd.org> Cc: current@freebsd.org Subject: Re: unprivileged users are able to kill certain jailed processes Message-ID: <43E7B1A7.8010501@cs.tu-berlin.de> In-Reply-To: <43E7494B.9040401@freebsd.org> References: <43E60708.9000902@cs.tu-berlin.de> <43E7494B.9040401@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Andre Oppermann schrieb: > [...] If you have normal users on the host and > have jails under the same user id then, yea, tough luck. You're not > supposed to do that. [...] Yes, I can prevent from overlapping UIDs, but how to prevent from that if host administrator and jail administrator are two independent parties? It requires much more carefulness and precautions. Regards Björn
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?43E7B1A7.8010501>