Attila Nagy wrote:
> Hello,
>
> I'm wondering about closing some information leaks in FreeBSD jails from
> the "outside world".
>
> Not that critical (depends on the application), but a simple user, with
> restricted devfs in the jail (devfsrules_jail for example from
> /etc/defaults/devfs.rules)
Jacques Vidrine wrote:
> I asked the FreeBSD Core Team to offer the security officer role to
> Colin Percival, and I am happy to say that they agreed and that Colin
> accepted. [...]
Thanks, Jacques, for the words of introduction. I'd like to take this
opportunity to say a few words to the comm
Benjamin Lutz wrote:
- full dmesg output after boot and the kernel buffer when it overflows
(can contain sensitive information)
If it's sensitive in so far as it endangers the privacy of local
non-jailed users, I think that's a bug that'd need fixing.
There are many points from this issue can be
Hello,
I'm wondering about closing some information leaks in FreeBSD jails from
the "outside world".
Not that critical (depends on the application), but a simple user, with
restricted devfs in the jail (devfsrules_jail for example from
/etc/defaults/devfs.rules) can figure out the following:
Hello Everyone!
It has been my pleasure and privilege to serve as the FreeBSD
Security Officer for the past 3+ years. With the crucial support of
the FreeBSD Security Team members, a lot has been accomplished:
hundreds of security issues have been researched and tracked, with
some result
