> Solve that with an unused uid. That ptrace_may_access check is > completely non-intuitive, and a problem if we ever remove the current > == task security module bug avoidance.
I thought he wanted to do that without suid? If he can change uids he can as well just use full network namespaces. -Andi -- [email protected] -- Speaking for myself only. _______________________________________________ Containers mailing list [email protected] https://lists.linux-foundation.org/mailman/listinfo/containers _______________________________________________ Devel mailing list [email protected] https://openvz.org/mailman/listinfo/devel
