]> git.ipfire.org Git - thirdparty/lxc.git/commit
projects / thirdparty / lxc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9e43c35) | patch
chmod container dir to 0770
authorSerge Hallyn <serge.hallyn@ubuntu.com>
Thu, 14 Aug 2014 18:29:55 +0000 (18:29 +0000)
committerStéphane Graber <stgraber@ubuntu.com>
Sat, 16 Aug 2014 01:05:20 +0000 (21:05 -0400)
commitc86da6a3ac517b78e6f710df7efe2f51d153b73c
treed0eb8a482fdbdd3121b9a8b352a94854f3f33574tree
parent9e43c352326d8fa266f6e440c3bc8c99ba9574e5commit | diff
chmod container dir to 0770

This prevents u2 from going into /home/u1/.local/share/lxc/u1/rootfs
and running setuid-root applications to get write access to u1's
container rootfs.

Signed-off-by: Serge Hallyn <serge.hallyn@ubuntu.com>
Acked-by: Dwight Engen <dwight.engen@oracle.com>
src/lxc/lxccontainer.c diff | blob | blame | history
Mirror of https://github.com/lxc/lxc.git