Re: Announce: many virtual servers on a single box

From: Pavel Machek (
Date: Fri Oct 12 2001 - 16:01:04 EST


> -I have also modified the capability system a little, so those virtual server
> administrators can't take over the machine. I have introduced a per-process
> capability ceiling, inherited by sub-process. Even setuid program can't grab
> more capabilities..

Really? What hardware do they see in /dev/? Do their servers have for
example mouse? What about ethernet cards?

Does /proc/kmem work in virtual servers?

[Why I'm asking? I'm trying to find ways to take over the machine. Do
you want to give me root on your machine stating that I can't

You might want to announce this on bugtraq. [And give solar designer
root account, he might be more creative ;)].


STOP THE WAR! Someone killed innocent Americans. That does not give
U.S. right to kill people in Afganistan.

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to More majordomo info at Please read the FAQ at

This archive was generated by hypermail 2b29 : Mon Oct 15 2001 - 21:00:51 EST