Re: Filesystem Capabilities in 2.6?

From: Alan Cox (alan@lxorguk.ukuu.org.uk)
Date: Sun Nov 03 2002 - 11:50:59 EST

Next message: Ragnar Kjørstad: "Re: Filesystem Capabilities in 2.6?"
Previous message: Matt Reppert: "Re: Working ide-cd burn/rip, 2.5.44"
In reply to: Alexander Viro: "Re: Filesystem Capabilities in 2.6?"
Next in thread: Alexander Viro: "Re: Filesystem Capabilities in 2.6?"
Reply: Alexander Viro: "Re: Filesystem Capabilities in 2.6?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, 2002-11-03 at 14:51, Alexander Viro wrote:
> No messing with chroot needed - just a way to irrevertibly turn off the
> ability (for anybody) to do mounts/umounts in a given namespace and ability
> to clone that namespace. Then give them ramfs for root and bind whatever
> you need in there. No breaking out of that, since there is nothing below
> their root where they could break out to...

mkdir foo
chroot foo
cd ../../../..
chroot .

Alan

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Ragnar Kjørstad: "Re: Filesystem Capabilities in 2.6?"
Previous message: Matt Reppert: "Re: Working ide-cd burn/rip, 2.5.44"
In reply to: Alexander Viro: "Re: Filesystem Capabilities in 2.6?"
Next in thread: Alexander Viro: "Re: Filesystem Capabilities in 2.6?"
Reply: Alexander Viro: "Re: Filesystem Capabilities in 2.6?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Nov 07 2002 - 22:00:29 EST