Hi,
> This is critical as the whole system security may be affected.
>
> So if using the default USEDEVPTS=yes the /dev/pts inside the chroot
> will be mounted with no gid setting. As the kernel share for the devpts
> fs is shared between all devpts the gid setting of
> /etc/init.d/mountdevsubfs.sh gets reseted.
This sounds like a kernel misfeature, and /me checks
fs/devpts/inode.c... Yup, looks like it.
System security doesn't seem too much affected because it only resets
to root:root 600 (a tighter permission than the default).
Looking at the source, it doesn't have any interface exposing the
current configuration. Hmm...
regards,
junichi
--
[EMAIL PROTECTED],netfort.gr.jp} Debian Project
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
