https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=211580
Jamie Gritton <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #173424|0 |1 is obsolete| | --- Comment #16 from Jamie Gritton <[email protected]> --- Created attachment 198114 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=198114&action=edit Current revision of allow.read_msgbuf patch I've updated Bjoern's patch for recent changes to allow.* handling, and gave it a mention in jail(8). As I mentioned, I'm still concerned about this permission bit beingoff by default. I think I might have misinterpreted Joe's focus (he may have been referring to security.bsd.unprivileged_read_msgbufandnot allow.read_msgbuf), but my comment remains: do we want to change the default behavior, or just allow it to be changed for those who care? A point in favor of changing the default is this is something of a security issue, so a reasonable default is to tend toward the more secure - plus, that's more of a reason to include it in 12. Hmm ... yeah, I can see either side. So which wins? -- You are receiving this mail because: You are the assignee for the bug. _______________________________________________ [email protected] mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-jail To unsubscribe, send any mail to "[email protected]"
