jails and devfs
Matthias Meyser
meyser at xenet.de
Thu Mar 6 08:15:07 UTC 2014
Hi.
Am 05.03.2014 14:48, schrieb Robert Schulze:
> I've already filed a PR for that:
>
> http://www.freebsd.org/cgi/query-pr.cgi?pr=187079
Thanks! devfs_load_rulesets="YES" workaround did it.
But I think this should fixed asap or everyone updating
FreeBSD end up in running insecure jails.
At least there should be a big fat warning in UPDATING.
Better /etc/rc.d/jail should emit a warning.
Best devfs.rules should be loaded as needed.
This would restore the old behavior an not break POLA.
with regards
Matthias Meyser
--
Matthias Meyser | XeNET GmbH
Tel.: +49-5323-9489050 | 38678 Clausthal-Zellerfeld, Marktstrasse 40
Fax: +49-5323-94014 | Registergericht: Amtsgericht Braunschweig HRB
110823
Email: Meyser at xenet.de | Geschaeftsfuehrer: Matthias Meyser
More information about the freebsd-stable
mailing list