Re: Closing information leaks in jails?
--IDYEmSnFhs3mNXr+
Content-Type: text/plain; charset=iso-8859-2
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Thu, Aug 18, 2005 at 05:18:30PM +0200, Benjamin Lutz wrote:
+> > - full dmesg output after boot and the kernel buffer when it overflows
+> > (can contain sensitive information)
+>=20
+> If it's sensitive in so far as it endangers the privacy of local
+> non-jailed users, I think that's a bug that'd need fixing.
sysctl security.bsd.unprivileged_read_msgbuf=3D0
--=20
Pawel Jakub Dawidek http://www.wheel.pl
pjd@FreeBSD.org http://www.FreeBSD.org
FreeBSD committer Am I Evil? Yes, I Am!
--IDYEmSnFhs3mNXr+
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (FreeBSD)
iD8DBQFDBdo3ForvXbEpPzQRAjtBAJ9HyWFQme9OEANjWqFQ9smsdszBEQCfUIHk
gONi4+qlH8AhGrGWiMNZNBI=
=Q76R
-----END PGP SIGNATURE-----
--IDYEmSnFhs3mNXr+--
討論串 (同標題文章)
完整討論串 (本文為第 8 之 8 篇):