keremet/mkimage-profiles
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
91075d008f
mkimage-profiles/features.in/build-vm
History
Michael Shigorin f293239d5b build-vm: try system tar2fs first 
It's at least removing the very obvious user->root
attack through (maliciously) modifying bin/tar2fs
and waiting for it to be run; if mkimage-profiles
is installed system-wide as a package, the script
from /usr/share/mkimage-profiles will be tried so
those willing to allow vm/* build to themselves
can provide for a passwordless sudo (as described
in doc/vm.txt) to run a root-only writable script,
not user-writable.

Still not perfect but a step away from the abyss.
2016-11-07 19:47:53 +03:00
..
image-scripts.d build-vm: update referenced script name 2015-01-05 11:18:48 +03:00
lib build-vm: try system tar2fs first 2016-11-07 19:47:53 +03:00
config.mk build-vm: don't use/deflogin indefinitely 2014-04-28 21:28:12 +04:00
generate.mk tar2vm: rewrote as tar2fs 2013-06-17 19:29:11 +04:00
README documentation: use paths relative to toplevel dir 2014-03-05 21:36:30 +04:00

README 

Эта фича конфигурирует создание образа виртуальной машины (VM).
Дополняет финальную стадию сборки (lib/, image-scripts.d/).
Требует для работы sudo(8) -- см. тж. doc/vm.txt