vserver development mailing list: Re: [vserver] Using NFS mounts in a vserver

Re: [vserver] Using NFS mounts in a vserver:
vserver development mailing list
[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]

About this list	Date view	Thread view	Subject view	Author view	Attachment view

From: Enrico Scholz (enrico.scholz_at_informatik.tu-chemnitz.de)
Date: Wed 17 Sep 2003 - 11:52:46 BST

Previous message: Mike Fischer: "Re: [vserver] Using NFS mounts in a vserver"
In reply to: Matthieu Racine: "Re: [vserver] Using NFS mounts in a vserver"
Next in thread: Matthieu Racine: "Re: [vserver] Using NFS mounts in a vserver"
Reply: Matthieu Racine: "Re: [vserver] Using NFS mounts in a vserver"

m.racine_at_free.fr ("Matthieu Racine") writes:

> I'm using NFS mounts with succes in vservers from about 4 months.
> ...
> 3 - when starting the vserver, doing :
> chbind --ip <my_vserverip> --bcast <my_vserver_broadcast> chroot
> ${VSERVERS_ROOT}/${VSERVER_NAME} mount -t nfs
> <myNFSserverIP>:/partage/nfs/pro /mnt/pro

This 'chroot' makes you vulnerably against attacks from inside of the
chroot (attacker can replace 'mount' (which runs in host-ctx) and can
break out of the chroot).

Enrico

Previous message: Mike Fischer: "Re: [vserver] Using NFS mounts in a vserver"
In reply to: Matthieu Racine: "Re: [vserver] Using NFS mounts in a vserver"
Next in thread: Matthieu Racine: "Re: [vserver] Using NFS mounts in a vserver"
Reply: Matthieu Racine: "Re: [vserver] Using NFS mounts in a vserver"

About this list	Date view	Thread view	Subject view	Author view	Attachment view

[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]
Generated on Wed 17 Sep 2003 - 12:21:59 BST by hypermail 2.1.3