From mboxrd@z Thu Jan 1 00:00:00 1970 From: Steve Grubb Subject: Re: PID's Mapping Date: Wed, 20 Apr 2016 08:33:12 -0400 Message-ID: <1748089.XZrfDjoJO0@x2> References: Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: linux-audit-bounces@redhat.com Errors-To: linux-audit-bounces@redhat.com To: Deepika Sundar , linux-audit@redhat.com List-Id: linux-audit@redhat.com On Wednesday, April 20, 2016 10:06:38 AM Deepika Sundar wrote: > Is there any way that can be suggested as to map PID's of namespace in > global? This is on the TODO list. We have been kicking around several ideas but have not come to a conclusion about what exactly needs to be done. The upshot of this is that basically containers have no support. -Steve > On Mon, Apr 18, 2016 at 8:47 PM, Paul Moore wrote: > > Please ask your question on the mailing list so that everyone can benefit. > > > > On Mon, Apr 18, 2016 at 1:34 AM, Deepika Sundar > > > > wrote: > > > How it can be achieved ,Can I get any idea on this? > > > > > > On Fri, Apr 15, 2016 at 4:12 AM, Paul Moore wrote: > > >> On Wed, Apr 13, 2016 at 1:43 AM, sowndarya kumar > > >> > > >> wrote: > > >> > Hi > > >> > > > >> > Is there any way to map the PID's seen in the namespace application > > > > with > > > > >> > the > > >> > PID's seen in global? > > >> > If it can be done please provide the documentation or idea on how it > > > > can > > > > >> > be > > >> > done. > > >> > > >> In general the audit subsystem doesn't pay attention to namespaces, > > >> all PIDs reported to userspace are reported with respect to the init > > >> namespace. > > >> > > >> -- > > >> paul moore > > >> www.paul-moore.com > > >> > > >> -- > > >> Linux-audit mailing list > > >> Linux-audit@redhat.com > > >> https://www.redhat.com/mailman/listinfo/linux-audit > > > > -- > > paul moore > > www.paul-moore.com