[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: [atomic-devel] Introducing bubblewrap

From: Daniel J Walsh <dwalsh redhat com>
To: Muayyad AlSadi <alsadi gmail com>
Cc: atomic-devel <atomic-devel projectatomic io>
Subject: Re: [atomic-devel] Introducing bubblewrap
Date: Fri, 6 May 2016 16:05:36 -0400



On 05/06/2016 03:46 PM, Muayyad AlSadi wrote:

long long ago we had this <https://fedoraproject.org/wiki/Features/RemoveSETUID

Yes I remember the guy that did that... The idea there was to takeadvantage of File System Capabilities. I believe bubblewrap iscurrently usingthem although it needs SYS_ADMIN so that feature does not greatlyincrease security for bubblewrap.

> There is probably a good case to be made that setuid is moresecurity then a random service that can setup
I totally agree, but my humble (maybe ignorant and less informed) ideais something like pam_oddjob_mkhomedirit's a process (protected by policy kit) which has a small humble job,which is to configure network (ex. add veth pair to some bridge andthe given user container)

In some cases a client server relationship is better then Setuid, but Ibelieve in this case you would have a hard time doing something cleanand testable by security reasearchers as bubblewrap.

Follow-Ups:
- Re: [atomic-devel] Introducing bubblewrap
  - From: Muayyad AlSadi

References:
- [atomic-devel] Introducing bubblewrap
  - From: Colin Walters
- Re: [atomic-devel] Introducing bubblewrap
  - From: Josh Berkus
- Re: [atomic-devel] Introducing bubblewrap
  - From: Daniel J Walsh
- Re: [atomic-devel] Introducing bubblewrap
  - From: Karanbir Singh
- Re: [atomic-devel] Introducing bubblewrap
  - From: Muayyad AlSadi
- Re: [atomic-devel] Introducing bubblewrap
  - From: Daniel J Walsh
- Re: [atomic-devel] Introducing bubblewrap
  - From: Muayyad AlSadi

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]