>>>> You might want to announce this on bugtraq. [And give solar
>>>> designer root account, he might be more creative ;)].
>>> You don't understand the issue. Anyone can create his own vserver.
>>> The system call controlling this are very simple. It is not a "try
>>> to crack my machine" contest. Anyone can create a vserver and test
>>> it.
>> But can you crack your way OUT of the vserver - how confident are you
>> in the isolation provided?
> Highly. Bug pending.
> The concept is both very simple and sound
...
> set_ipv4root to tie all processes in a vserver to one IP.
How well does this work on an ipv6 only box?
Best wishes from Riley.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/