can anyone tell me how it can be possible for a vserver
admin to break out of the vserver, when the directory
containing the vserver has any other mode than 000 ?
or should the permissions be set for the dir of the actual vserver
(/vserver/x/.) instead of the directory containing the vservers
(/vserver/x/..) ?
**********************************************************
/vservers/x/.. has insecure permissions.
A vserver administrator may be able to visit the root server.
To fix this, do
chmod 000 /vservers/x/..
do it anytime you want, even if vservers are running.
**********************************************************
lars
