vserver development mailing list: Re: [Vserver] vserver + grsec + gradm problem

Re: [Vserver] vserver + grsec + gradm problem:
vserver development mailing list
[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]

About this list	Date view	Thread view	Subject view	Author view	Attachment view

From: Sandino Araico Sánchez (sandino_at_sandino.net)
Date: Tue 30 Mar 2004 - 06:25:43 BST

Previous message: Sandino Araico Sánchez: "Re: [Vserver] vserver + grsec + gradm problem"
In reply to: Lucas Albers: "Re: [Vserver] vserver + grsec + gradm problem"
Next in thread: Herbert Poetzl: "Re: [Vserver] vserver + grsec + gradm problem"

Lucas Albers wrote:

>I was under the impression that you were not supposed to use gradm with
>vservers?
>
>
The master server can enable/disable /proc/sys/kernel/grsecurity flags
until /proc/sys/kernel/grsecurity/lock is turned on, the chrooted
chcontexted processes inside a vps havs no permission to change
/proc/sys/kernel/grsecurity flags in any time.
The master server can set ACL policies, the chrooted chcontexted
processes inside a vps havs no permission.
Both master and chrooted chcontexted vps can change chpax flags on an
elf binary.

> Incompatible security format, or something?
>
>

-- Sandino Araico Sánchez -- Melón se comió las plumas....

_______________________________________________ Vserver mailing list Vserver_at_list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver

Previous message: Sandino Araico Sánchez: "Re: [Vserver] vserver + grsec + gradm problem"
In reply to: Lucas Albers: "Re: [Vserver] vserver + grsec + gradm problem"
Next in thread: Herbert Poetzl: "Re: [Vserver] vserver + grsec + gradm problem"

About this list	Date view	Thread view	Subject view	Author view	Attachment view

[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]
Generated on Tue 30 Mar 2004 - 03:55:57 BST by hypermail 2.1.3