Date: Fri, 19 Aug 2005 15:10:15 +0200 From: Pawel Jakub Dawidek <pjd@FreeBSD.org> To: Benjamin Lutz <benlutz@datacomm.ch> Cc: freebsd-security@FreeBSD.org Subject: Re: Closing information leaks in jails? Message-ID: <20050819131015.GD21893@garage.freebsd.pl> In-Reply-To: <4304A6C6.6090006@datacomm.ch> References: <43049FB2.1030203@fsn.hu> <4304A6C6.6090006@datacomm.ch>
next in thread | previous in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] On Thu, Aug 18, 2005 at 05:18:30PM +0200, Benjamin Lutz wrote: +> > - full dmesg output after boot and the kernel buffer when it overflows +> > (can contain sensitive information) +> +> If it's sensitive in so far as it endangers the privacy of local +> non-jailed users, I think that's a bug that'd need fixing. sysctl security.bsd.unprivileged_read_msgbuf=0 -- Pawel Jakub Dawidek http://www.wheel.pl pjd@FreeBSD.org http://www.FreeBSD.org FreeBSD committer Am I Evil? Yes, I Am! [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (FreeBSD) iD8DBQFDBdo3ForvXbEpPzQRAjtBAJ9HyWFQme9OEANjWqFQ9smsdszBEQCfUIHk gONi4+qlH8AhGrGWiMNZNBI= =Q76R -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050819131015.GD21893>