Not if they don't have CAP_SYS_CHROOT.
And you can protect against /dev and /proc misuse by disabling CAP_SYS_ADMIN.
-- Jamie
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/