Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Fri, 11 May 2018 15:58:39 +0200
From: Jann Horn <>
To: Alexey Gladkov <>
Cc: Kees Cook <>, Andy Lutomirski <>, 
	Andrew Morton <>,, 
	kernel list <>, 
	Kernel Hardening <>, 
	linux-security-module <>, 
	Linux API <>, Greg Kroah-Hartman <>, 
	Alexander Viro <>, Akinobu Mita <>, 
	Oleg Nesterov <>, Jeff Layton <>, 
	Ingo Molnar <>, Alexey Dobriyan <>, 
	"Eric W. Biederman" <>, Linus Torvalds <>, 
	aniel Micay <>, Jonathan Corbet <>,, 
	Stephen Rothwell <>, Solar Designer <>, 
	"Dmitry V. Levin" <>, Djalal Harouni <>
Subject: Re: [PATCH v5 7/7] proc: add option to mount only a pids subset

On Fri, May 11, 2018 at 11:37 AM, Alexey Gladkov
<> wrote:
> This allows to hide all files and directories in the procfs that are not
> related to tasks.

/proc/$pid/net and /proc/$pid/task/$tid/net aren't in scope for this
protection, even though they contain information about the whole
network namespace of the task, right?

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.