OpenVZ Forum: Support » User Seperation Issue

Home » General » Support » User Seperation Issue

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

Re: User Seperation Issue [message #34789 is a reply to message #34788]

Mon, 02 February 2009 21:06

curx
Messages: 739
Registered: February 2006
Location: Nürnberg, Germany

Senior Member

[quote title=HostRail wrote on Mon, 02 February 2009 21:41]ok. So you are saying vm1 can change/kill proccesses on vz2?

ct0 = hardware node

no!, if you on hardwarenode and you have the same userid like the user in your container
its possbile to send signals from the hardwarenode to processes in the container like kill, term etc...

but if you a user in a container you doesnt see any processes of other containers context!

it isolate vm1 vm2 vm3 ... vmX but not the hardware node,
the hardware node is the "Achilles' heel"

Bye,
Thorsten

[Updated on: Mon, 02 February 2009 21:11]

Report message to a moderator

[Message index]

		User Seperation Issue By: HostRail on Mon, 02 February 2009 17:11
		Re: User Seperation Issue By: curx on Mon, 02 February 2009 20:00
		Re: User Seperation Issue By: HostRail on Mon, 02 February 2009 20:02
		Re: User Seperation Issue By: curx on Mon, 02 February 2009 20:31
		Re: User Seperation Issue By: HostRail on Mon, 02 February 2009 20:41
		Re: User Seperation Issue By: curx on Mon, 02 February 2009 21:06
		Re: User Seperation Issue By: HostRail on Mon, 02 February 2009 21:09

Previous Topic:	Not oops but crash with latest stable kernel.
Next Topic:	Can't configure user_xattr option with bind mount into container

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

]

Current Time: Thu Jul 10 02:04:32 GMT 2025

Total time taken to generate the page: 0.02872 seconds