On Mon, Jul 24 2023 at 10:08:50 AM -0400, Demi Marie Obenour
<demiobenour@xxxxxxxxx> wrote:
I saw that libguestfs has a guestmount(1) tool, and I think this
could be
a potential solution. An exploit against the kernel FS driver would
only
grant access to a KVM guest, and the QEMU process can be tightly
sandboxed
by means such as seccomp and SELinux.
Ah, interesting. Maybe something like that would work, indeed....
_______________________________________________
devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
