* Ritesh Raj Sarraf , 2023-01-20 16:59:
The current upstream documentation does warn about the functionality,
and does not advertise anything about confining the namespace.
Er, but it does talk about confinement:
Hostfs without any parameters to the UML Image will allow the image to
mount
Hello Jakub,
On Wed, 2023-01-11 at 18:39 +0100, Jakub Wilk wrote:
> * Ritesh Raj Sarraf , 2023-01-10 18:43:
> > > The man page says that hostfs kernel param is "used to confine
> > > all
> > > hostfs mounts to within the specified directory tree on the
> > > host". But
> > > it's trivial to
* Ritesh Raj Sarraf , 2023-01-10 18:43:
The man page says that hostfs kernel param is "used to confine all
hostfs mounts to within the specified directory tree on the host". But
it's trivial to escape this confinements with ../ sequences:
# mount none -t hostfs -o
Hello Jakub,
On Tue, 2023-01-03 at 22:28 +0100, Jakub Wilk wrote:
> The man page says that hostfs kernel param is "used to confine all
> hostfs mounts to within the specified directory tree on the host".
> But
> it's trivial to escape this confinements with ../ sequences:
>
> # mount none
Package: user-mode-linux
Version: 6.0um1+b1
Tags: security
The man page says that hostfs kernel param is "used to confine all
hostfs mounts to within the specified directory tree on the host". But
it's trivial to escape this confinements with ../ sequences:
# mount none -t hostfs -o
5 matches
Mail list logo