git.ipfire.org Git - thirdparty/lxc.git/commit

]> git.ipfire.org Git - thirdparty/lxc.git/commit

projects / thirdparty / lxc.git / commit

author	Stéphane Graber <stgraber@ubuntu.com>
	Sun, 28 Dec 2014 17:33:29 +0000 (18:33 +0100)
committer	Stéphane Graber <stgraber@ubuntu.com>
	Mon, 5 Jan 2015 21:28:33 +0000 (16:28 -0500)
commit	98b745498bf97637f68311f944903777f3ee1e67
tree	891cf2e3bd6a19c9fa93caf425d9c6680ba8c91d	tree
parent	abf117c398c957b213feebe3fa6dea3107c3a452	commit \| diff

apparmor: Block access to /proc/kcore

Just like we block access to mem and kmem, there's no good reason for
the container to have access to kcore.

Reported-by: Marc Schaefer
Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>
Acked-by: Serge E. Hallyn <serge.hallyn@ubuntu.com>

config/apparmor/abstractions/container-base		diff \| blob \| blame \| history
config/apparmor/abstractions/container-base.in		diff \| blob \| blame \| history

Mirror of https://github.com/lxc/lxc.git

RSS Atom