From owner-freebsd-rc@FreeBSD.ORG Tue Oct 19 20:20:18 2010 Return-Path: Delivered-To: freebsd-rc@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 389101065670; Tue, 19 Oct 2010 20:20:18 +0000 (UTC) (envelope-from pjd@garage.freebsd.pl) Received: from mail.garage.freebsd.pl (60.wheelsystems.com [83.12.187.60]) by mx1.freebsd.org (Postfix) with ESMTP id D3E558FC1C; Tue, 19 Oct 2010 20:20:17 +0000 (UTC) Received: by mail.garage.freebsd.pl (Postfix, from userid 65534) id 31DD845C9F; Tue, 19 Oct 2010 21:53:03 +0200 (CEST) Received: from localhost (chello089073192049.chello.pl [89.73.192.49]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.garage.freebsd.pl (Postfix) with ESMTP id 8CE6945C8A; Tue, 19 Oct 2010 21:52:55 +0200 (CEST) Date: Tue, 19 Oct 2010 21:52:25 +0200 From: Pawel Jakub Dawidek To: Devin Teske Message-ID: <20101019195225.GB2127@garage.freebsd.pl> References: <1286925182.32724.18.camel@localhost.localdomain> <1286996709.32724.60.camel@localhost.localdomain> <1287448781.5713.3.camel@localhost.localdomain> <1287510629.25599.2.camel@localhost.localdomain> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="8NvZYKFJsRX2Djef" Content-Disposition: inline In-Reply-To: <1287510629.25599.2.camel@localhost.localdomain> User-Agent: Mutt/1.4.2.3i X-PGP-Key-URL: http://people.freebsd.org/~pjd/pjd.asc X-OS: FreeBSD 9.0-CURRENT amd64 X-Spam-Checker-Version: SpamAssassin 3.0.4 (2005-06-05) on mail.garage.freebsd.pl X-Spam-Level: X-Spam-Status: No, score=-0.6 required=4.5 tests=BAYES_00,RCVD_IN_SORBS_DUL autolearn=no version=3.0.4 Cc: Julian Elischer , freebsd-rc@freebsd.org Subject: Re: sysrc(8) -- a sysctl(8)-like utility for managing rc.conf(5) X-BeenThere: freebsd-rc@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion related to /etc/rc.d design and implementation." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 19 Oct 2010 20:20:18 -0000 --8NvZYKFJsRX2Djef Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Oct 19, 2010 at 10:50:29AM -0700, Devin Teske wrote: > I added `-j jail' for specifying a jail id or name to operate within > (requires jls(8); overrides `-R dir'). [...] Note that operating on jail files from outside a jail is serious security problem. The files from within the jail can be symbolic links that point to files from outside a jail from your perspective. Even chroot(2) to jail's root is neither safe (running applications that can be modified by jail's root is obvious security hole) nor reliable (jail might not have all the commands). The only safe way is to jexec(8) into a jail, but it of course has the same relialability issue as chroot(8). --=20 Pawel Jakub Dawidek http://www.wheelsystems.com pjd@FreeBSD.org http://www.FreeBSD.org FreeBSD committer Am I Evil? Yes, I Am! --8NvZYKFJsRX2Djef Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.14 (FreeBSD) iEYEARECAAYFAky99vgACgkQForvXbEpPzQLFwCfUw7oFcgj8ShqFb9TEz7JbDBg tswAoOUJ8Nr5OXoEUns1J60ozmB/A4UZ =FEUR -----END PGP SIGNATURE----- --8NvZYKFJsRX2Djef--