We want to stop systemd from being added to docker images, because of rpm requiring systemctl.

Chris Adams linux at cmadams.net
Tue Apr 29 20:22:14 UTC 2014

Once upon a time, Reindl Harald <h.reindl at thelounge.net> said:
> don't get me wrong but you are talking bullshit

Put up or shut up.

> you can't download whatever you like to do in any random situation
> and excutue it like in a sehll - if you have only *one command* through
> a web application you need to achieve that this single command triggers
> the whole attack surface down to the critical component giving you
> root access

If you can't explain how a non-privileged binary can result in a
privilege escalation, then you are wrong.  You need to go up-thread and
read what I was responding to and show how it is wrong.

Chris Adams <linux at cmadams.net>

More information about the devel mailing list