Rivoreo Source Code Repositories
src.rivoreo.one / vzctl / 4c0fb4cb540fcc6835ed636c198bd0ad425e18e7
commit4c0fb4cb540fcc6835ed636c198bd0ad425e18e7[log] [download]
authorKir Kolyshkin <kir@openvz.org>Tue Aug 26 15:44:18 2008 +0400
committerKir Kolyshkin <kir@openvz.org>Tue Aug 26 15:44:18 2008 +0400
tree1441a7bd75d0c1da4e39233127789bd694946a55
parent7480702d644ce6aea5efa2b0f4d97ebfb2625dd4 [diff]
More strict permissions for /vz/private and /vz/root

As pointed out in bug #954 (and has been generally known for ages)
ordinary users in CT0 can access CT files having the same GIDs/UIDs.
This can be effectively prevented by using mode 700 for /vz/root
and /vz/private. It was already done so in vzctl.spec (for RPMs)
but not in "make install" target. Fix it here as well.

http://bugzilla.openvz.org/954

Signed-off-by: Kir Kolyshkin <kir@openvz.org>
1 file changed
tree: 1441a7bd75d0c1da4e39233127789bd694946a55
  1. .gear-rules
  2. .gitignore
  3. COPYING
  4. ChangeLog
  5. INSTALL
  6. Makefile.am
  7. acinclude.m4
  8. autogen.sh
  9. bin/
  10. configure.ac
  11. etc/
  12. include/
  13. man/
  14. paths.am
  15. pathsubst.am
  16. scripts/
  17. src/
  18. vzctl.spec