[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: chroot administration

On Wed, 14 Aug 2002 15:47, Michael Stone wrote:
> On Wed, Aug 14, 2002 at 11:50:14AM +0100, Sam Vilain wrote:
> > You might want to investiage `security contexts', a new kernel feature
> > that can be used for virtual IP roots as well as making processes in
> > one context (even root) not able to see other contexts' processes.
> > The userland utilities also offer a way to remove Linux's capabilities
> > (eg, to disallow raw sockets or bypassing filesystem permissions).
> >
> > http://www.solucorp.qc.ca/miscprj/s_context.hc
>
> Does this avoid selinux's patent encumbrance issues?

It's offering the same functionality as BSD jail only so the patents in 
question don't apply.

They don't apply to SE Linux either, the NSA says that SE Linux is licensed 
under the GPL only.  If anyone wants to dispute that then they have to sue 
the NSA...

-- 
I do not get viruses because I do not use MS software.
If you use Outlook then please do not put my email address in your
address-book so that WHEN you get a virus it won't use my address in the
>From field.
Reply to: