On Fri, 11.12.15 11:36, Leroy Pubel (lepu...@gmail.com) wrote:
> Is it considered safe to setuid on a root-owned binary that launches
> systemd-nspawn with the argument "--private-users=1000:1"?
Well, that all depends on your code... Note that SUID binaries
generally have the problem that they
Is it considered safe to setuid on a root-owned binary that launches
systemd-nspawn with the argument "--private-users=1000:1"?
i.e.
/* user-nspawn.c */
#include
int main() {
const char * binary = "/usr/bin/systemd-nspawn";
execl(binary, binary, "--private-users=1000:1", (char *)NULL);
}