OpenVZ Forum: Support » OpenVZ and (gr)security

Home » General » Support » OpenVZ and (gr)security

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

Switch to threaded view of this topic

Create a new topic

Submit Reply

OpenVZ and (gr)security [message #8583]

Mon, 27 November 2006 19:34

dermax is currently offline

dermax
Messages: 5
Registered: November 2006

Junior Member

Hi,

I'd really like to use OpenVZ productive, but somehow I miss the features of grsecurity, like the ability to disallow users to see _all_ processes running, it's afaik some /proc setting.

My plan is to virtualize a shell server, and of course it's stupid if every customer sees whats running on the VE - so therefore 'top', 'ps aux' should be restricted that the shell users can only see their own processes.

I always achieved that by using grsecurity, but grsec unfortunately doesn't work in combination with OpenVZ Wink

Wink

It would be great if someone has an idea to solve this problem.

Thank you!

[Updated on: Mon, 27 November 2006 19:35]

Report message to a moderator

Send a private message to this user

Re: OpenVZ and (gr)security [message #8590 is a reply to message #8583]

Tue, 28 November 2006 10:32

dev is currently offline

dev
Messages: 1693
Registered: September 2005
Location: Moscow

Senior Member

it is quite easy to do... what kernel do you use?

http://static.openvz.org/userbars/openvz-developer.png

Report message to a moderator

Send a private message to this user

Re: OpenVZ and (gr)security [message #8594 is a reply to message #8590]

Tue, 28 November 2006 14:35

dermax is currently offline

dermax
Messages: 5
Registered: November 2006

Junior Member

Hi,

I use the 2.6.18-ovz028test005.1 kernel.

Thanks for your help! Smile

Smile

[Updated on: Tue, 28 November 2006 14:35]

Report message to a moderator

Send a private message to this user

Re: OpenVZ and (gr)security [message #11484 is a reply to message #8594]

Sun, 25 March 2007 13:06

thanh
Messages: 4
Registered: March 2007

Junior Member

Hi,

is there any progress in this topic? Has anyone successfully deployed openvz and gesecurity?

Report message to a moderator

Send a private message to this user

Switch to threaded view of this topic

Create a new topic

Submit Reply

Previous Topic:	checkpoint optimizations?
Next Topic:	SOLVED df and disk space used from du don't quite match

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

PDF

]

Current Time: Wed May 08 10:13:23 GMT 2024

Total time taken to generate the page: 0.01413 seconds