Date: Fri, 07 Mar 2014 12:02:06 +0100 From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no> To: Tom Evans <tevans.uk@googlemail.com> Cc: "freebsd-security@freebsd.org" <freebsd-security@freebsd.org>, Xin LI <d@delphij.net>, Nicola Galante <galante@veritas.sao.arizona.edu> Subject: Re: misc/187307: Security vulnerability with FreeBSD Jail Message-ID: <86d2hy6zm9.fsf@nine.des.no> In-Reply-To: <CAFHbX1KrdEtmJn4ZAj1ER41a%2BYcyjAx_9fiDAySYK2YRN0xy_g@mail.gmail.com> (Tom Evans's message of "Thu, 6 Mar 2014 02:13:57 %2B0000") References: <201403052307.s25N7NoD045308@cgiserv.freebsd.org> <5317B597.5050900@delphij.net> <CAFHbX1KrdEtmJn4ZAj1ER41a%2BYcyjAx_9fiDAySYK2YRN0xy_g@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Tom Evans <tevans.uk@googlemail.com> writes: > As a defender I would hope that someone has already done: > > host# chmod 700 /path/to > > You're right though, jail users have no business on the host. cf. the warning I added to the handbook after the last trip on this merry-go-round: http://www.freebsd.org/doc/handbook/jails.html DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86d2hy6zm9.fsf>