Re: Improving FreeBSD-SA-07:01.jail fix
- From: Stefan Bethke <stb@xxxxxxxxxx>
- Date: Sat, 20 Jan 2007 17:52:32 +0100
Am 20.01.2007 um 13:24 schrieb Simon L. Nielsen:
BTW. with regard to the console.log file I really don't think it
should be put back inside the jail unless it's possible to make the
generation of the file entirely inside the jail since it's just not
worth the risk/complexity.
I'm probably missing something, but why not replace:
_jail_id=$(head -1 ${_tmp_jail})
tail +2 ${_tmp_jail} >${_rootdir}/var/log/console.log
with:
_jail_id=$(head -1 ${_tmp_jail})
tail +2 ${_tmp_jail} | jexec ${_jail_id} sh -c "cat >/var/log/ console.log"
Stefan
--
Stefan Bethke <stb@xxxxxxxxxx> Fon +49 170 346 0140
_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"
- Follow-Ups:
- Re: Improving FreeBSD-SA-07:01.jail fix
- From: Simon L. Nielsen
- Re: Improving FreeBSD-SA-07:01.jail fix
- References:
- FreeBSD Security Advisory FreeBSD-SA-07:01.jail
- From: FreeBSD Security Advisories
- HEADS UP: Re: FreeBSD Security Advisory FreeBSD-SA-07:01.jail
- From: Colin Percival
- Re: HEADS UP: Re: FreeBSD Security Advisory FreeBSD-SA-07:01.jail
- From: Pawel Jakub Dawidek
- Re: Improving FreeBSD-SA-07:01.jail fix [was: HEADS UP: Re: FreeBSD Security Advisory FreeBSD-SA-07:01.jail]
- From: Simon L. Nielsen
- FreeBSD Security Advisory FreeBSD-SA-07:01.jail
- Prev by Date: Re: Improving FreeBSD-SA-07:01.jail fix
- Next by Date: ssh-add core dump out of the blue...
- Previous by thread: Re: Improving FreeBSD-SA-07:01.jail fix [was: HEADS UP: Re: FreeBSD Security Advisory FreeBSD-SA-07:01.jail]
- Next by thread: Re: Improving FreeBSD-SA-07:01.jail fix
- Index(es):
