Article 4CT0N [$] Managing sysctl knobs with BPF

[$] Managing sysctl knobs with BPF

by
corbet
from LWN.net on (#4CT0N)
"Sysctl" is the kernel's mechanism for exposing tunable parameters to userspace. Every sysctl knob is presented as a virtual file in a hierarchyunder /proc/sys; current values can be queried by reading thosefiles, and a suitably privileged user can change a value by writing to itsassociated file. What happens, though, when a system administrator wouldlike to limit access to sysctl, even for privileged users? Currently thereis no solution to this problem other than blocking access to /procentirely. That may change, though, if this patchset from Andrey Ignatov makes its way into the mainline.
External Content
Source RSS or Atom Feed
Feed Location http://lwn.net/headlines/rss
Feed Title LWN.net
Feed Link https://lwn.net/
Reply 0 comments