Re: [RFC,PATCH 1/2] seccomp_filters: system call filtering using BPF

From: Will Drewry
Date: Thu Jan 12 2012 - 12:53:05 EST

Next message: KY Srinivasan: "RE: [PATCH 1/1][RESEND] Staging: hv: storvsc: Move the storagedriver out of the staging area"
Previous message: Konrad Rzeszutek Wilk: "Re: [PATCH 2/7] tboot: Add return values for tboot_sleep"
In reply to: Alan Cox: "Re: [RFC,PATCH 1/2] seccomp_filters: system call filtering usingBPF"
Next in thread: James Morris: "Re: [RFC,PATCH 1/2] seccomp_filters: system call filtering usingBPF"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Jan 12, 2012 at 11:11 AM, Alan Cox <alan@xxxxxxxxxxxxxxxxxxx> wrote:
>> more about). Since setuid is privilege escalation, then perhaps it
>> makes sense to allow it as an escape hatch.
>>
>> Would it be sane to just disallow setuid exec exclusively?
>
> I think that is a policy question. I can imagine cases where either
> behaviour is the "right" one so it may need to be a parameter ?

Makes sense. I'll make it flaggable (ignoring the parallel conversation
about having a thread-wide suidable bit).

thanks!
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: KY Srinivasan: "RE: [PATCH 1/1][RESEND] Staging: hv: storvsc: Move the storagedriver out of the staging area"
Previous message: Konrad Rzeszutek Wilk: "Re: [PATCH 2/7] tboot: Add return values for tboot_sleep"
In reply to: Alan Cox: "Re: [RFC,PATCH 1/2] seccomp_filters: system call filtering usingBPF"
Next in thread: James Morris: "Re: [RFC,PATCH 1/2] seccomp_filters: system call filtering usingBPF"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]