oss-sec mailing list archives

Re: Linux: Disabling network namespaces

From: Philippe Cerfon <philcerf () gmail com>
Date: Tue, 16 Apr 2024 23:31:43 +0200

Hey.

There's even an allegedly "wontfix" bug of mine where I requested that
Debian switches back to a secure default and disables user namesapce which
have a long history of being exploitable:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1012547

Don't think the current hole one will have been the last one.

Unfortunately it seems a feature that only a group of people will need is
valued more important than keeping users secure. :-(

Regards,
Philippe

Current thread:

Re: Linux: Disabling network namespaces, (continued)
- - - Re: Linux: Disabling network namespaces Priedhorsky, Reid (Apr 22)
    - Re: Linux: Disabling network namespaces Solar Designer (Apr 21)
    - Re: Linux: Disabling network namespaces Jordan Glover (Apr 22)
    - Re: Linux: Disabling network namespaces Demi Marie Obenour (Apr 23)
    - Re: Linux: Disabling network namespaces Simon McVittie (Apr 23)
    - Re: Linux: Disabling network namespaces John Johansen (Apr 29)
    - Re: Linux: Disabling network namespaces Simon McVittie (Apr 21)
    - Re: Linux: Disabling network namespaces Solar Designer (Apr 21)
  - Re: Linux: Disabling network namespaces nightmare . yeah27 (Apr 19)
    - Re: Re: Linux: Disabling network namespaces John Johansen (Apr 29)
- Re: Linux: Disabling network namespaces Philippe Cerfon (Apr 16)
  - Re: Linux: Disabling network namespaces Demi Marie Obenour (Apr 16)