[Bug 211580] deny system message buffer access from jails

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view

[Bug 211580] deny system message buffer access from jails


[hidden email] changed:

           What    |Removed                     |Added
                 CC|                            |[hidden email]
                   |                            |m.au

--- Comment #12 from [hidden email] ---
(In reply to Jamie Landeg-Jones from comment #8)
I run a lot of non-vimage jails but I can only see one use-case for this
requirement - if I don't/can't access the host system, then a monitoring jail
may acquire & provide the dmesg information for a reporting jail?  Is there
another use for this, that you have in mind and that we might benefit?

a jail reports
# dmesg
dmesg: sysctl kern.msgbuf: Operation not permitted

You are receiving this mail because:
You are the assignee for the bug.
[hidden email] mailing list
To unsubscribe, send any mail to "[hidden email]"