From cperciva@freebsd.org  Thu May 26 00:43:36 2011
Return-Path: <cperciva@freebsd.org>
Received: from mx2.freebsd.org (mx2.freebsd.org [IPv6:2001:4f8:fff6::35])
	by hub.freebsd.org (Postfix) with ESMTP id A4EC9106566B
	for <bug-followup@freebsd.org>; Thu, 26 May 2011 00:43:36 +0000 (UTC)
	(envelope-from cperciva@freebsd.org)
Received: from xps.daemonology.net (freefall.freebsd.org [IPv6:2001:4f8:fff6::28])
	by mx2.freebsd.org (Postfix) with SMTP id 489421510B6
	for <bug-followup@freebsd.org>; Thu, 26 May 2011 00:43:36 +0000 (UTC)
Received: (qmail 11903 invoked from network); 26 May 2011 00:43:35 -0000
Received: from unknown (HELO xps.daemonology.net) (127.0.0.1)
  by localhost with SMTP; 26 May 2011 00:43:35 -0000
Message-Id: <4DDDA237.5070907@freebsd.org>
Date: Wed, 25 May 2011 17:43:35 -0700
From: Colin Percival <cperciva@freebsd.org>
To: Kostik Belousov <kostikbel@gmail.com>
Cc: Chris Rees <utisoft@gmail.com>, bug-followup@freebsd.org, 
 Benedict Reuschling <bcr@freebsd.org>,
 Jilles Tjoelker <jilles@stack.nl>
In-Reply-To: <20110526001815.GD48734@deviant.kiev.zoral.com.ua>
Subject: Re: Fwd: docs/156853: [patch] Update docs: jail(8) security issues
 with world-readable jail root
References: <4DD90459.3010200@FreeBSD.org> <20110522191752.GR48734@deviant.kiev.zoral.com.ua> <4DDB76E7.4020602@freebsd.org> <BANLkTikMVLUKxs0TSjaGkSrh1YtHj81NZA@mail.gmail.com> <20110526001815.GD48734@deviant.kiev.zoral.com.ua>

>Number:         157327
>Category:       docs
>Synopsis:       Re: docs/156853: [patch] Update docs: jail(8) security issues with world-readable jail root
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-doc
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Thu May 26 00:50:09 UTC 2011
>Closed-Date:    Thu May 26 14:04:37 UTC 2011
>Last-Modified:  Thu May 26 14:05:06 UTC 2011
>Originator:     
>Release:        
>Organization:
>Environment:
>Description:
 On 05/25/11 17:18, Kostik Belousov wrote:
 > BTW, do we also put such verbose wording somewhere for the "security"
 > issue of removing not writable / not owned files in the directory
 > writable by some user ?
 
 Because this doesn't seem to be something people get confused by, at least
 judging by the fact that secteam doesn't get any email about it.  I assume
 the bar for deciding when documentation ought to be expanded is something
 along the line of "do people reading the existing documentation commonly
 make mistakes".
 
 -- 
 Colin Percival
 Security Officer, FreeBSD | freebsd.org | The power to serve
 Founder / author, Tarsnap | tarsnap.com | Online backups for the truly paranoid
>How-To-Repeat:
>Fix:
>Release-Note:
>Audit-Trail:
State-Changed-From-To: open->closed 
State-Changed-By: linimon 
State-Changed-When: Thu May 26 14:03:09 UTC 2011 
State-Changed-Why:  
Misfiled followup to docs/156853; content migrated. 


Responsible-Changed-From-To: gnats-admin->freebsd-doc 
Responsible-Changed-By: linimon 
Responsible-Changed-When: Thu May 26 14:03:09 UTC 2011 
Responsible-Changed-Why:  

http://www.freebsd.org/cgi/query-pr.cgi?pr=157327 
>Unformatted:
