Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Sun, 3 Apr 2011 23:55:14 +0200 (CEST)
From: Pavel Kankovsky <peak@...o.troja.mff.cuni.cz>
To: owl-dev@...ts.openwall.com
Subject: Re: sysfs facility

On Sun, 27 Mar 2011, Solar Designer wrote:

> mount sysfs /sys -t sysfs -omode=700

It is possible to do chmod 700 /sys after mount (this is secure if it
happens before the system enters the multiuser mode). The same approach
can be used to restrict access to static elements of /proc.

-- 
Pavel Kankovsky aka Peak                          / Jeremiah 9:21        \
"For death is come up into our MS Windows(tm)..." \ 21st century edition /

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ