From: Björn Steinbrink (bjoern.steinbrink_at_isp4p.net)
Date: Mon 18 Oct 2004 - 23:23:58 BST
On Mon, 18 Oct 2004 17:59:13 -0400 (EDT)
"Gregory (Grisha) Trubetskoy" <grisha_at_ispol.com> wrote:
>
> I seem to be seeing pts's from the host server inside a vserver. The
> vserver is started with --secure, so should have no additional caps.
> This is 1.9.3-rc2:
>
> # cat /proc/self/vinfo
> XID: 10201
>
> # ls -l /dev/pts/
> total 0
> crw--w---- 1 zzzz tty 136, 0 Oct 18 17:36 0
> crw--w---- 1 zzzz tty 136, 1 Oct 18 17:44 1
> crw--w---- 1 zzzz tty 136, 2 Oct 18 17:38 2
> crw--w---- 1 root tty 136, 3 Oct 18 17:51 3
> crw--w---- 1 root tty 136, 4 Oct 18 17:52 4
>
> ...login to the main (host) server with ssh, now:
>
> # ls -l /dev/pts/
> total 0
> crw--w---- 1 zzzz tty 136, 0 Oct 18 17:36 0
> crw--w---- 1 zzzz tty 136, 1 Oct 18 17:44 1
> crw--w---- 1 zzzz tty 136, 2 Oct 18 17:38 2
> crw--w---- 1 root tty 136, 3 Oct 18 17:51 3
> crw--w---- 1 root tty 136, 4 Oct 18 17:52 4
> crw--w---- 1 zzzz tty 136, 5 Oct 18 17:52 5
>
> is this normal?
Yes, it is. Those files are associated with a context and any attempt to
mess with them from context X if they do not belong to context X will be
denied and logged in the syslog like this:
... : VSW: xid=X messing with the devpts.
HTH
Bjoern
_______________________________________________
Vserver mailing list
Vserver_at_list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver