Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S964845AbWBTK0i (ORCPT ); Mon, 20 Feb 2006 05:26:38 -0500 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S964846AbWBTK0i (ORCPT ); Mon, 20 Feb 2006 05:26:38 -0500 Received: from mailhub.sw.ru ([195.214.233.200]:14379 "EHLO relay.sw.ru") by vger.kernel.org with ESMTP id S964845AbWBTK0h (ORCPT ); Mon, 20 Feb 2006 05:26:37 -0500 Message-ID: <43F99586.9050308@sw.ru> Date: Mon, 20 Feb 2006 13:10:14 +0300 From: Kirill Korotaev User-Agent: Mozilla/5.0 (X11; U; Linux i686; ru-RU; rv:1.2.1) Gecko/20030426 X-Accept-Language: ru-ru, en MIME-Version: 1.0 To: Dave Hansen CC: Herbert Poetzl , "Eric W. Biederman" , "Serge E. Hallyn" , linux-kernel@vger.kernel.org, vserver@list.linux-vserver.org, Alan Cox , Arjan van de Ven , Suleiman Souhlal , Hubertus Franke , Cedric Le Goater , Kyle Moffett , Greg , Linus Torvalds , Andrew Morton , Greg KH , Rik van Riel , Alexey Kuznetsov , Andrey Savochkin , Kirill Korotaev , Andi Kleen , Benjamin Herrenschmidt , Jeff Garzik , Trond Myklebust , Jes Sorensen Subject: Re: (pspace,pid) vs true pid virtualization References: <20060215145942.GA9274@sergelap.austin.ibm.com> <20060216143030.GA27585@MAIL.13thfloor.at> <1140111692.21383.2.camel@localhost.localdomain> In-Reply-To: <1140111692.21383.2.camel@localhost.localdomain> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: linux-kernel-owner@vger.kernel.org X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 841 Lines: 21 >>this is mandatory, as it is required to kill any process >>from the host (admin) context, without entering the pid >>space (which would lead to all kind of security issues) > > > Giving admin processes the ability to enter pid spaces seems like it > solves an entire class of problems, right?. Could you explain a bit > what kinds of security issues it introduces? Enter is not always possible. For example when you have exhausted your resources in VPS. (e.g. hit process limit inside). And you can't make enter without resource limitations, since it will be a security hole then. Kirill - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/