/dev (devtmpfs) permissions is 1777 [message #48347] |
Mon, 15 October 2012 14:30 |
umask
Messages: 23 Registered: December 2007
|
Junior Member |
|
|
Hello,
Please suggest me how it happens.
Case 1. On started container:
# vzctl exec2 777 "ls -lad /dev"
drwxrwxrwt 8 root root 2440 Oct 15 18:07 /dev
# ls -lad /vz/private/777/dev
drwxr-xr-x 3 root root 4.0K Oct 15 18:07 /vz/private/777/dev
# ls -lad /vz/root/777/dev
drwxrwxrwt 8 root root 2.4K Oct 15 18:07 /vz/root/777/dev
Case 2. On stopped container:
# ls -lad /vz/private/777/dev
drwxr-xr-x 3 root root 4.0K Oct 15 18:07 /vz/private/777/dev
This problem happened on Scientific Linux 6 x86_64 container which created from precreated template ( http://download.openvz.org/template/precreated/scientific-6- x86_64.tar.gz).
The problem here is that /dev has permissions like /tmp (1777). Probably this may follow to security issues/vulnerabilities.
I checked that CentOS 6 x86_64 precreated template has the same issue.
Both container and HW node running on Scientific Linux/Centos 6 x86_64.
[Updated on: Mon, 15 October 2012 14:32] Report message to a moderator
|
|
|