It does. I included a warning in jail.8 that this will pretty much undo jail security. There are still reasons some may want to do this, but it's definitely not for everyone or even most people.
- Jamie On 1/29/2014 6:43 AM, Gleb Smirnoff wrote:
On Wed, Jan 29, 2014 at 01:41:13PM +0000, Jamie Gritton wrote: J> Author: jamie J> Date: Wed Jan 29 13:41:13 2014 J> New Revision: 261266 J> URL: http://svnweb.freebsd.org/changeset/base/261266 J> J> Log: J> Add a jail parameter, allow.kmem, which lets jailed processes access J> /dev/kmem and related devices (i.e. grants PRIV_IO and PRIV_KMEM_WRITE). J> This in conjunction with changing the drm driver's permission check from J> PRIV_DRIVER to PRIV_KMEM_WRITE will allow a jailed Xorg server. J> J> Submitted by: netchild Doesn't this allow to easily unjail self? :)
_______________________________________________ svn-src-head@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/svn-src-head To unsubscribe, send any mail to "svn-src-head-unsubscr...@freebsd.org"
