unnecessary /proc requirement in 3.1.1
Wayne Davison
wayned at samba.org
Sun Aug 2 17:33:34 UTC 2015
On Sat, Aug 1, 2015 at 4:21 AM, Fyodorov "Bga" Alexander <
bga.email at gmail.com> wrote:
> Whole /proc is serious security risk for me. Why?
>
You'll have to ask your system libraries that question, since it is them
that are querying /proc. Your extra chrooting is forcing even the
root-level actions (socket connections, etc) to be chrooted, not just the
user actions (transfers and such). So, either the libraries have changed
in what they decide to look for in the environment or an additional library
call in the more modern rsync is triggering that check. Nothing in rsync
uses /proc.
..wayne..
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.samba.org/pipermail/rsync/attachments/20150802/2b80faa6/attachment.html>
More information about the rsync
mailing list