On Sun, Mar 26, 2006 at 01:31:47PM +0300, Nikolay Kichukov wrote: > I have the following situation, where users on the host become owners of the > home directories of the users of the guest. > > [EMAIL PROTECTED]:/var/lib/vservers/vn/home# ls -alh > total 44K > drwxr-xr-x 11 root root 4.0K Mar 25 18:42 . > drwxr-xr-x 20 root root 4.0K Mar 17 00:39 .. > drwxr-xr-x 3 services services 4.0K Mar 24 00:16 agra > drwxr-xr-x 6 spectre spectre 4.0K Mar 25 13:30 cipri > ... > > As you can see user services on the HOST can now have full access to the > home directory of user agra on the guest.
On Sun, Mar 26, 2006 at 03:45:06PM +0300, Nikolay Kichukov wrote: > thanks for the advise, but that did not work. > Did you mean > chmod -R 000 /var/lib/vservers? no ... i mean chmod 000 /var/lib/vservers ... your ls -alh command is root command, so 'spectre' or 'services' is only output of 'ls' command ... if you don't have some uid/gid on host, you see only numerical value try 'ls' command as user 'spectre', not root ... so they're not real owners ... http://linux-vserver.org/chroot-barrier -- 5o Peter.Mann at tuke.sk _______________________________________________ Vserver mailing list [email protected] http://list.linux-vserver.org/mailman/listinfo/vserver
