From owner-freebsd-security@FreeBSD.ORG Thu Jul 17 20:10:47 2008 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CD10A106566B for ; Thu, 17 Jul 2008 20:10:47 +0000 (UTC) (envelope-from freebsd-security@dfmm.org) Received: from dfmm.org (treehorn.dfmm.org [66.180.195.213]) by mx1.freebsd.org (Postfix) with ESMTP id 8E0088FC19 for ; Thu, 17 Jul 2008 20:10:47 +0000 (UTC) (envelope-from freebsd-security@dfmm.org) Received: (qmail 19785 invoked by uid 1000); 17 Jul 2008 20:10:47 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 17 Jul 2008 20:10:47 -0000 Date: Thu, 17 Jul 2008 13:10:46 -0700 (PDT) From: Jason Stone X-X-Sender: jason@treehorn.dfmm.org To: Tim Clewlow In-Reply-To: <50456.192.168.1.10.1216301690.squirrel@192.168.1.100> Message-ID: References: <884CB541-7977-4EF1-9B72-7226BDF30188@patpro.net> <20080717085136.B87887@fledge.watson.org> <50456.192.168.1.10.1216301690.squirrel@192.168.1.100> User-Agent: Alpine 1.00 (BSF 882 2007-12-20) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Cc: Liste FreeBSD-security , Robert Watson Subject: Re: A new kind of security needed X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Jul 2008 20:10:47 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 > how do you build a piped process group when all the individual > processes are separately jailed? "pipe ; fork ; chroot ; setuid". See qmail for an example. -Jason -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (FreeBSD) Comment: See https://private.idealab.com/public/jason/jason.gpg iD8DBQFIf6dHswXMWWtptckRAoumAJoCwvvrDwZzZRQPqC7G4u8rxFv1hwCdEeiY 9KP1d4aEhCpkVy3FYkHHP0w= =4P0+ -----END PGP SIGNATURE-----