Hiding secrets from root (Was: Re: [RFC][2.6 patch] Allow creation of new namespaces during mount system call)

On Thu, Apr 21, 2005 at 19:44:56 +0100, Jamie Lokier wrote: Jan Hudec wrote: By the way, IIRC so far the root can access all kernel memory too via /dev/kmem. So the limiting of root's rights would have to be limited a bit more yet. On some hardened systems, root is not allowed access to

Re: Hiding secrets from root (Was: Re: [RFC][2.6 patch] Allow creation of new namespaces during mount system call)

Jan Hudec wrote: On Thu, Apr 21, 2005 at 19:44:56 +0100, Jamie Lokier wrote: Jan Hudec wrote: By the way, IIRC so far the root can access all kernel memory too via /dev/kmem. So the limiting of root's rights would have to be limited a bit more yet. On some hardened systems, root