git.ipfire.org Git - thirdparty/lxc.git/commit

]> git.ipfire.org Git - thirdparty/lxc.git/commit

projects / thirdparty / lxc.git / commit

author	Stéphane Graber <stgraber@ubuntu.com>
	Sun, 28 Dec 2014 17:33:29 +0000 (18:33 +0100)
committer	Stéphane Graber <stgraber@ubuntu.com>
	Fri, 30 Jan 2015 08:51:19 +0000 (09:51 +0100)
commit	1a18db0a6cd4b8a9db6245b2d59367a3f8c337c0
tree	8ed1098189052a2fbf66d2952148cbd1eb9f8625	tree \| snapshot
parent	fca113ed229df759a831b65f6ea6d130ccd93030	commit \| diff

apparmor: Block access to /proc/kcore

Just like we block access to mem and kmem, there's no good reason for
the container to have access to kcore.

Reported-by: Marc Schaefer
Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>
Acked-by: Serge E. Hallyn <serge.hallyn@ubuntu.com>

config/apparmor/abstractions/container-base		diff \| blob \| blame \| history
config/apparmor/abstractions/container-base.in		diff \| blob \| blame \| history

Mirror of https://github.com/lxc/lxc.git

RSS Atom