Re: chroot administration

To: debian-devel@lists.debian.org
Subject: Re: chroot administration
From: Michael Stone <mstone@debian.org>
Date: Wed, 14 Aug 2002 09:47:36 -0400
Message-id: <[🔎] 20020814094736.A2029@justice.loyola.edu>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20020814115014.5dc5ce3b.sv@easyspace.com>; from sv@easyspace.com on Wed, Aug 14, 2002 at 11:50:14AM +0100
References: <[🔎] 20020813214849.72BED6E9@lyta.coker.com.au> <[🔎] 1029290996.7301.1.camel@space-ghost> <[🔎] 1029296116.28857.3.camel@zaphod> <[🔎] 20020814115014.5dc5ce3b.sv@easyspace.com>

On Wed, Aug 14, 2002 at 11:50:14AM +0100, Sam Vilain wrote:
> You might want to investiage `security contexts', a new kernel feature
> that can be used for virtual IP roots as well as making processes in
> one context (even root) not able to see other contexts' processes.
> The userland utilities also offer a way to remove Linux's capabilities
> (eg, to disallow raw sockets or bypassing filesystem permissions).
> 
> http://www.solucorp.qc.ca/miscprj/s_context.hc

Does this avoid selinux's patent encumbrance issues?

-- 
Mike Stone

Reply to:

Follow-Ups:
- Re: chroot administration
  - From: Russell Coker <russell@coker.com.au>

References:
- chroot administration
  - From: Russell Coker <russell@coker.com.au>
- Re: chroot administration
  - From: Colin Walters <walters@verbum.org>
- Re: chroot administration
  - From: Shaya Potter <spotter@cs.columbia.edu>
- Re: chroot administration
  - From: Sam Vilain <sv@easyspace.com>

Prev by Date: Re: Upcoming bug mass-filing re. non-free TrueType fonts in main
Next by Date: Re: g++ 3.2 on woody ?
Previous by thread: Re: Sandboxing Debian [was: Re: chroot administration]
Next by thread: Re: chroot administration
Index(es):
- Date
- Thread