Is it safe to mount /proc and /dev for screen and such things? Whats the best way to mount it? mount proc /home/penis/proc -t proc? noexec,nosuid ?
"If a jailed user or a jailed process can modify files in (for example) the JAIL/lib/ or JAIL/etc/ directory (i.e., those within the jail directory), the user can bypass security checks and gain root privileges.." How is this? Does this assume there is a process running as root that uses these libs? So then attacker could change them and execute arbitrary code in the root process?
Thanks in advance for clearing things up.
PS: Hope I have done this right. Mailing lists are a first for me I was hoping for an IRC.