Date: Sat, 07 Sep 2013 01:02:32 -0700 From: Colin Percival <cperciva@freebsd.org> To: Slawa Olhovchenkov <slw@zxy.spb.ru> Cc: svn-src-head@FreeBSD.org, svn-src-all@FreeBSD.org, Gleb Smirnoff <glebius@FreeBSD.org>, src-committers@FreeBSD.org, Jamie Gritton <jamie@FreeBSD.org> Subject: Re: svn commit: r255316 - head/sys/kern Message-ID: <522ADD98.6050705@freebsd.org> In-Reply-To: <20130907080318.GA95723@zxy.spb.ru> References: <201309061732.r86HWTha054904@svn.freebsd.org> <20130906181826.GL4574@FreeBSD.org> <522A25FA.5060008@FreeBSD.org> <20130907070313.GO4574@FreeBSD.org> <522AD078.9010501@freebsd.org> <20130907080318.GA95723@zxy.spb.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On 09/07/13 01:03, Slawa Olhovchenkov wrote: > On Sat, Sep 07, 2013 at 12:06:32AM -0700, Colin Percival wrote: > >> On 09/07/13 00:03, Gleb Smirnoff wrote: >>> Does that mean that we always have had ability for a jail-root to >>> investigate kernel memory? >> >> Only if you're crazy enough to have a /dev/kmem inside your jail. > > Have we ability to export individual devices (from /dev/) to jail? > For example, jail with named need /dev/ inside. Yes, man 8 devfs. -- Colin Percival Security Officer Emeritus, FreeBSD | The power to serve Founder, Tarsnap | www.tarsnap.com | Online backups for the truly paranoid
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?522ADD98.6050705>