kern/48198: Non-jailed users can kill processes owned by same
UID
Pawel Jakub Dawidek
pjd at FreeBSD.org
Fri Feb 20 04:52:04 PST 2004
Synopsis: Non-jailed users can kill processes owned by same UID
State-Changed-From-To: open->closed
State-Changed-By: pjd
State-Changed-When: Pi± 20 Lut 04:42:35 2004 PST
State-Changed-Why:
This is an expected behaviour.
Administrator have to be aware about this and don't
create user accounts outside the jail with the same UIDs
as accounts inside the jail. Exactly the same problem exists
with file system objects and this can't be sloved in this way,
because no information about jail exists in file's inode
and users outside of jail aren't chrooted.
If one is running virtuals servers with jail and with regular
users inside those servers, there should be no users accounts
on this machine outside jails.
http://www.freebsd.org/cgi/query-pr.cgi?pr=48198
More information about the freebsd-bugs
mailing list