Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1759229AbYLGWv6 (ORCPT ); Sun, 7 Dec 2008 17:51:58 -0500 Received: (majordomo@vger.kernel.org) by vger.kernel.org id S1758300AbYLGWrh (ORCPT ); Sun, 7 Dec 2008 17:47:37 -0500 Received: from tundra.namei.org ([65.99.196.166]:46196 "EHLO tundra.namei.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1758281AbYLGWrg (ORCPT ); Sun, 7 Dec 2008 17:47:36 -0500 Date: Mon, 8 Dec 2008 09:47:21 +1100 (EST) From: James Morris To: "Eric W. Biederman" cc: "Serge E. Hallyn" , lkml , David Howells , Michael Kerrisk , Dhaval Giani Subject: Re: [PATCH 2/2] user namespaces: require cap_set{ug}id for CLONE_NEWUSER In-Reply-To: Message-ID: References: <20081203191706.GA16433@us.ibm.com> <20081203191733.GA16652@us.ibm.com> User-Agent: Alpine 1.10 (LRH 962 2008-03-14) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 940 Lines: 28 On Fri, 5 Dec 2008, Eric W. Biederman wrote: > "Serge E. Hallyn" writes: > > > While ideally CLONE_NEWUSER will eventually require no > > privilege, the required permission checks are currently > > not there. As a result, CLONE_NEWUSER has the same effect > > as a setuid(0)+setgroups(1,"0"). While we already require > > CAP_SYS_ADMIN, requiring CAP_SETUID and CAP_SETGID seems > > appropriate. > > Acked-by: "Eric W. Biederman" > > The patch looks good, and we are likely to need more caps to > actually use it. Applied to git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/security-testing-2.6#next -- James Morris -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/