pavel@ucw.cz said:
> ...and using CAP_SYS_RAWIO...
... or were you complaining about 'jail' turning off CAP_SYS_RAWIO, rather
than claiming that it is an unplugged hole?
If so, that may be a problem, but I haven't seen anything that cares about
CAP_SYS_RAWIO being off. That was the simplest way I could find to disable
writing to /dev/kmem.
Jeff
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Mon Jul 15 2002 - 22:00:15 EST