| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 26 Jul 2016 12:30:10 +0200 From: "Michael Kerrisk (man-pages)" <mtk.manpages@...il.com> To: "Eric W. Biederman" <ebiederm@...ssion.com>, Linux Containers <containers@...ts.linux-foundation.org> Cc: mtk.manpages@...il.com, Andy Lutomirski <luto@...capital.net>, Jann Horn <jann@...jh.net>, Kees Cook <keescook@...omium.org>, Nikolay Borisov <kernel@...p.com>, "Serge E. Hallyn" <serge@...lyn.com>, Seth Forshee <seth.forshee@...onical.com>, linux-fsdevel@...r.kernel.org, netdev@...r.kernel.org, linux-kernel@...r.kernel.org, linux-api@...r.kernel.org Subject: Re: [PATCH v2 00/10] userns: sysctl limits for namespaces Hello Eric, I realized I had a question after the last mail. On 07/21/2016 06:39 PM, Eric W. Biederman wrote: > > This patchset addresses two use cases: > - Implement a sane upper bound on the number of namespaces. > - Provide a way for sandboxes to limit the attack surface from > namespaces. Can you say more about the second point? What exactly is the problem that is being addressed, and how does the patch series address it? (It would be good to have those details in the revised commit message...) Cheers, Michael
Powered by blists - more mailing lists