[EMAIL PROTECTED] (Henrik Heil) writes: > 1) Chroot Barrier Flag > > http://www-user.tu-chemnitz.de/~ensc/util-vserver/doc/lt2004/paper.html#fig:rmattack > > ---8<--- > Die Anf�lligkeit gegen Symlinkattacken und andere Races ist ein > weiterer Nachteil des stable Branches, weshalb vom Einsatz in > feindlichen Umgebungen wie root-Server f�r Kunden abzuraten ist. > --->8--- > > Is this still true -- does this mean that i cannot use the stable > branch in a possible hostile production environment?
This applies to the stable branch of the userspace utilities only. I am not aware about non-DOS security problems in the kernel level (except the /proc stuff, but this should not be a problem when sysrq-support is disabled and no SCSI drives in use). Enrico _______________________________________________ Vserver mailing list [EMAIL PROTECTED] http://list.linux-vserver.org/mailman/listinfo/vserver
