Date: Wed, 28 Sep 2005 21:06:00 GMT From: "Christian S.J. Peron" <csjp@FreeBSD.org> To: mark@gaiahost.coop, csjp@FreeBSD.org, freebsd-bugs@FreeBSD.org, csjp@FreeBSD.org Subject: Re: misc/86630: core dump in jail shows up in security report for all jails on system Message-ID: <200509282106.j8SL60Y0005185@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
Synopsis: core dump in jail shows up in security report for all jails on system State-Changed-From-To: open->analyzed State-Changed-By: csjp State-Changed-When: Wed Sep 28 21:02:26 GMT 2005 State-Changed-Why: I dont think this is an issue. There is a setting which will take care of this problem if you feel it's a problem. Try: sysctl security.bsd.unprivileged_read_msgbuf=0 This will prevent unprivileged users, including prison root from reading the kernel message buffer. Responsible-Changed-From-To: freebsd-bugs->csjp Responsible-Changed-By: csjp Responsible-Changed-When: Wed Sep 28 21:02:26 GMT 2005 Responsible-Changed-Why: I dont think this is an issue. There is a setting which will take care of this problem if you feel it's a problem. Try: sysctl security.bsd.unprivileged_read_msgbuf=0 This will prevent unprivileged users, including prison root from reading the kernel message buffer. http://www.freebsd.org/cgi/query-pr.cgi?pr=86630
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200509282106.j8SL60Y0005185>