[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [Openvds-devel] Control Panel for OpenVDS-2
From: |
Dave Cost |
Subject: |
RE: [Openvds-devel] Control Panel for OpenVDS-2 |
Date: |
Mon, 14 Jan 2002 13:42:12 -0800 |
> Isn't that a bit risky ? If those users will be root (even if
> chrooted), they
> will run processes as root as well, right ?
Right. But, when using capabilities root is just another uid. It's no
different than any other user, except that it has all the capabilities,
while a regular user has none.
What we'll do is loose some capabilities before becoming a virtual root. For
example we'll loose the capabilities to mess up with the network intefaces,
the capability to insert modules in the kernel and all the other dangerous
things.
Dave.
- Re[2]: [Openvds-devel] Control Panel for OpenVDS-2, (continued)
- Re[2]: [Openvds-devel] Control Panel for OpenVDS-2, Eje Gustafsson, 2002/01/15
- RE: [Openvds-devel] Control Panel for OpenVDS-2, Dave Cost, 2002/01/14
- Re: [Openvds-devel] Control Panel for OpenVDS-2, Joe Cooper, 2002/01/13
- RE: [Openvds-devel] Control Panel for OpenVDS-2, Dave Cost, 2002/01/14
- Re: [Openvds-devel] Control Panel for OpenVDS-2, Joe Cooper, 2002/01/14
- RE: [Openvds-devel] Control Panel for OpenVDS-2, Dave Cost, 2002/01/14
- Re: [Openvds-devel] Control Panel for OpenVDS-2, Joe Cooper, 2002/01/14
- RE: [Openvds-devel] Control Panel for OpenVDS-2, Dave Cost, 2002/01/14
- Re: [Openvds-devel] Control Panel for OpenVDS-2, Joe Cooper, 2002/01/14
- Re: [Openvds-devel] Control Panel for OpenVDS-2, Wim Godden, 2002/01/14
- RE: [Openvds-devel] Control Panel for OpenVDS-2,
Dave Cost <=
- Re: [Openvds-devel] Control Panel for OpenVDS-2, Wim Godden, 2002/01/14
- Re: [Openvds-devel] Control Panel for OpenVDS-2, Joe Cooper, 2002/01/14
- Re: [Openvds-devel] Control Panel for OpenVDS-2, Paul Sladen, 2002/01/14
- RE: [Openvds-devel] Control Panel for OpenVDS-2, Dave Cost, 2002/01/14
- Re: [Openvds-devel] Control Panel for OpenVDS-2, Joe Cooper, 2002/01/14
- RE: [Openvds-devel] Control Panel for OpenVDS-2, Dave Cost, 2002/01/14
- Re: [Openvds-devel] Control Panel for OpenVDS-2, Joe Cooper, 2002/01/14
- RE: [Openvds-devel] Control Panel for OpenVDS-2, Dave Cost, 2002/01/14
- RE: [Openvds-devel] Control Panel for OpenVDS-2, Paul Sladen, 2002/01/14
- RE: [Openvds-devel] Control Panel for OpenVDS-2, Dave Cost, 2002/01/14