On Thu, Sep 07, 2006 at 12:18:14PM -0600, Eric W. Biederman wrote: > Kirill Korotaev <dev at sw.ru> writes: > > > yes, these patches are usable for OpenVZ AS IS, so I'm not sure > > why we can't do step by step and commit. However I posted some comments on > > patches... > > > > Eric do you have some STRONG objections (maybe I just missed it somewhere)? > > - We do not handle interactions between processes in different uid > namespaces and still have the normal uid equality checks. > - I am willing to be convinced that this is a nuclear missile the user > is allowed to shoot themselves in the foot with if someone can show me > how to use the current version safely. > > A lot of this scares me silly as when ever you touch the primary > identifier in the security checks you must be very very very careful. > My gut feeling is that I'm nowhere near paranoid enough and the rest > of you aren't even paranoid. > > What I want to see is that every uid identity check becomes either > a struct user comparison or a uid, uid_ns tuple comparison. second that! best, Herbert > Eric > _______________________________________________ > Containers mailing list > Containers at lists.osdl.org > https://lists.osdl.org/mailman/listinfo/containers
