Bug#453862: [Pbuilder-maint] Bug#453862: Wrong mounting devpts
Junichi Uekawa
dancer at netfort.gr.jp
Wed Dec 26 11:22:06 UTC 2007
Hi,
> This is critical as the whole system security may be affected.
>
> So if using the default USEDEVPTS=yes the /dev/pts inside the chroot
> will be mounted with no gid setting. As the kernel share for the devpts
> fs is shared between all devpts the gid setting of
> /etc/init.d/mountdevsubfs.sh gets reseted.
This sounds like a kernel misfeature, and /me checks
fs/devpts/inode.c... Yup, looks like it.
System security doesn't seem too much affected because it only resets
to root:root 600 (a tighter permission than the default).
Looking at the source, it doesn't have any interface exposing the
current configuration. Hmm...
regards,
junichi
--
dancer@{debian.org,netfort.gr.jp} Debian Project
More information about the Pbuilder-maint
mailing list