Re: chroot administration

To: debian-devel@lists.debian.org
Subject: Re: chroot administration
From: Shaya Potter <spotter@cs.columbia.edu>
Date: 13 Aug 2002 23:35:15 -0400
Message-id: <[🔎] 1029296116.28857.3.camel@zaphod>
In-reply-to: <[🔎] 1029290996.7301.1.camel@space-ghost>
References: <[🔎] 20020813214849.72BED6E9@lyta.coker.com.au> <[🔎] 1029290996.7301.1.camel@space-ghost>

On Tue, 2002-08-13 at 22:09, Colin Walters wrote:
> On Tue, 2002-08-13 at 17:48, Russell Coker wrote:
> > I have written SE Linux policy for administration of a chroot environment.  
> > That allows me to give full root administration access (ability to 
> > create/delete users, kill processes running under different UIDs, ptrace, 
> > etc) to a chroot environment without giving any access to the rest of the 
> > system.
> 
> Since no one else has apparently said it explictly yet, I have to say
> that's extremely cool :)

argh. its so cool that you essentially stole my summer research. :(. 
Does this allow you to create any amount of chroot jails?  We are also
working on making "virtual IPs" that each jail would get.  We are also
working on being able to move the processes while running (w/ network
connections) from machine to machine w/o needing any state on initial
machine.

Reply to:

Follow-Ups:
- Re: chroot administration
  - From: Russell Coker <russell@coker.com.au>
- Re: chroot administration
  - From: Sam Vilain <sv@easyspace.com>

References:
- chroot administration
  - From: Russell Coker <russell@coker.com.au>
- Re: chroot administration
  - From: Colin Walters <walters@verbum.org>

Prev by Date: Bug#156606: ITP: hebcal -- A Perpetual Jewish Calendar
Next by Date: Woody Install Error -- Not bootable
Previous by thread: Re: chroot administration
Next by thread: Re: chroot administration
Index(es):
- Date
- Thread