https://bugzilla.mindrot.org/show_bug.cgi?id=3441
--- Comment #8 from Darren Tucker <dtucker@dtucker.net> ---
Oh, one other possibility for testing purposes: you could also mount
/proc inside the privsep chroot. Obviously this would be a terrible
idea to run in production since in this context /proc is probably more
than 50% attack surface and chroot escapes by weight.
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs
--- Comment #8 from Darren Tucker <dtucker@dtucker.net> ---
Oh, one other possibility for testing purposes: you could also mount
/proc inside the privsep chroot. Obviously this would be a terrible
idea to run in production since in this context /proc is probably more
than 50% attack surface and chroot escapes by weight.
--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs