Re: Closing information leaks in jails?
From: Pawel Jakub Dawidek (pjd_at_FreeBSD.org)
Date: 08/19/05
- Previous message: Benjamin Lutz: "Re: Closing information leaks in jails?"
- In reply to: Benjamin Lutz: "Re: Closing information leaks in jails?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 19 Aug 2005 15:10:15 +0200 To: Benjamin Lutz <benlutz@datacomm.ch>
On Thu, Aug 18, 2005 at 05:18:30PM +0200, Benjamin Lutz wrote:
+> > - full dmesg output after boot and the kernel buffer when it overflows
+> > (can contain sensitive information)
+>
+> If it's sensitive in so far as it endangers the privacy of local
+> non-jailed users, I think that's a bug that'd need fixing.
sysctl security.bsd.unprivileged_read_msgbuf=0
-- Pawel Jakub Dawidek http://www.wheel.pl pjd@FreeBSD.org http://www.FreeBSD.org FreeBSD committer Am I Evil? Yes, I Am!
- application/pgp-signature attachment: stored
- Previous message: Benjamin Lutz: "Re: Closing information leaks in jails?"
- In reply to: Benjamin Lutz: "Re: Closing information leaks in jails?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
