Date: Sun, 28 May 2006 23:26:48 +0200 From: =?UTF-8?B?VsOhY2xhdiBIYWlzbWFu?= <V.Haisman@sh.cvut.cz> To: Anatoli Klassen <anatoli@aksoft.net> Cc: freebsd-hackers@freebsd.org Subject: Re: security.bsd.see_other_uids for jails Message-ID: <447A1598.2080401@sh.cvut.cz> In-Reply-To: <4479A99E.8080708@aksoft.net> References: <4479A99E.8080708@aksoft.net>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig5DDBA4ABE3091A88C720C5F6 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Anatoli Klassen wrote: > Hi All, >=20 > if security.bsd.see_other_uids is set to 0, users from the main system > can still see processes from jails if they have (by accident) the save = uid. >=20 > For me it's wrong behavior because the main system and the jail are two= > different systems where uids are independent. >=20 > Could somebody explain the case? >=20 > Regards, > Anatoli What about mac_partition? Not that I have tried it. It just seems it could be what you want. -- VH --------------enig5DDBA4ABE3091A88C720C5F6 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQEVAwUBRHoVoW56zbtzMDG0AQLeHgf8Cj0f0w1MyDHimRcE9o8f9qYoXZOvZeFD L8SKzG+KvrLSDdzRguj151OCksL9W+Zu3Jbl2ZIMvszxcdwBKkn0fdFln02sd+HA POd+CqntnFFTHVHGhtCFxwXbFT8yNGPQeimVvDp0Ta1DeuxowZO9hzhR+qgqbz2G F3fwieuDhZOVbMZefbUd/mYclqPoM/fP+dkvRN2zb3YhFPGVBJPsekHdpHgPkqYk rV3FA3izs7ZdEwvrhggVSlK+bzetalzPS0g9T4EKEseVUVT35cejLqnacWviViL5 7nx5PrDhfCKJDKlvl+zz3dygNm6Q3xCVVle6jUlGAQMd4+CN+qZvHg== =A4ER -----END PGP SIGNATURE----- --------------enig5DDBA4ABE3091A88C720C5F6--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?447A1598.2080401>