On Monday 2012-08-13 20:10, Andy Lutomirski wrote:
>
>One of these days, I intend to resurrect my unprivileged chroot kernel
>patches. My current thought is to add a new syscall weak_chroot,
>which should have these properties:
>[...]
>3. Can't be used to break out of chroot jail.
>
>The interfac
On Fri, Aug 10, 2012 at 1:58 PM, Colin Walters wrote:
> Hi,
>
> This is the release of linux-user-chroot 2012.2. The major change now
> is that it makes use of Andy's new PR_SET_NO_NEW_PRIVS. This doesn't
> close any security hole I'm aware of - our previous use of the MS_NOSUID
> bind mount ove
2 matches
Mail list logo
