kern/48198: Non-jailed users can kill processes owned by same
Pawel Jakub Dawidek
pjd at FreeBSD.org
Fri Feb 20 04:52:04 PST 2004
Synopsis: Non-jailed users can kill processes owned by same UID
State-Changed-When: Pi± 20 Lut 04:42:35 2004 PST
This is an expected behaviour.
Administrator have to be aware about this and don't
create user accounts outside the jail with the same UIDs
as accounts inside the jail. Exactly the same problem exists
with file system objects and this can't be sloved in this way,
because no information about jail exists in file's inode
and users outside of jail aren't chrooted.
If one is running virtuals servers with jail and with regular
users inside those servers, there should be no users accounts
on this machine outside jails.
More information about the freebsd-bugs