1455583110 J * aj__ ~aj@p578b6aa1.dip0.t-ipconnect.de 1455584343 Q * fstd Remote host closed the connection 1455584600 J * fstd ~fstd@xdsl-87-78-14-246.netcologne.de 1455596672 Q * fstd Remote host closed the connection 1455596872 J * fstd ~fstd@xdsl-87-78-14-246.netcologne.de 1455608842 Q * AndrewLee Read error: Connection reset by peer 1455608848 J * Ghislain ~aqueos@adsl1.aqueos.com 1455608872 N * Bertl_zZ Bertl 1455608873 J * AndrewLee ~andrew@210.240.39.201 1455608874 M * Bertl morning folks! 1455609168 Q * aj__ Ping timeout: 480 seconds 1455611256 J * aj__ ~aj@fw.gkh-setu.de 1455611593 J * nikolay ~Nikolay@199.91.137.248 1455613259 J * druschka_domaintechnik ~druschka@185.51.130.86 1455615868 J * Gremble ~Gremble@cpc87151-aztw31-2-0-cust755.18-1.cable.virginm.net 1455616536 Q * eyck Quit: leaving 1455616724 J * eyck ~eyck@u28n61.nowanet.pl 1455616732 Q * eyck 1455616771 J * eyck ~eyck@u28n61.nowanet.pl 1455617136 Q * DLange Remote host closed the connection 1455617199 J * DLange ~DLange@dlange.user.oftc.net 1455617338 Q * druschka_domaintechnik Quit: druschka_domaintechnik 1455617363 J * druschka_domaintechnik ~druschka@185.51.130.86 1455619586 M * Ghislain hello bertl, still had no time to look at the memory in 4.1 :( 1455619761 M * Bertl didn't know you planned to look into it, but good too hear that you will :) 1455621415 M * Ghislain well i try to find something, as you know i dont know c or kernel but i try to find what migth help you get the last miles done if i find a clue ^^ 1455621549 M * Bertl appreciated! 1455624369 M * Guy- Bertl: do you have a notion when you'll be able to post an experimental patch for 4.1.x that includes the recent fixes discussed here? (100%cpu when trying to kill an out-of-context process; wrong ppid for fake init process; was there anything else?) 1455624718 M * Bertl will happen soon I hope 1455625439 M * Guy- how soon is soon? :) 1455625460 M * Guy- I'm asking because I'll need such a kernel a few days from now 1455625476 M * Guy- so the question is whether I should create my own or wait for you :) 1455625861 M * Bertl hopefully tomorrow 1455627182 M * Guy- \o/ 1455627543 Q * fstd Remote host closed the connection 1455627634 J * fstd ~fstd@xdsl-84-44-145-130.netcologne.de 1455632756 M * Guy- for the record, it's possible to share an sssd running on the host with guests by bind mounting the host's /var/lib/sss in the guests in read-only mode 1455633347 M * Bertl okay, but I wouldn't suggest to do so :) 1455633949 M * Guy- Bertl: why not? 1455633987 M * Guy- (obviously it's not a good idea if the guests are operated by different customers, but I use vservers only to isolate services from each other; authentication information and nss _should_ be shared) 1455634231 M * Bertl well, you are probably running Linux-VServer for security reasons too not just to "separate" a few processes I presume 1455634252 M * Bertl if not, then of course it's fine to cross over between isolation areas 1455634394 M * Guy- security only in the sense that if one service were compromised (including a root compromise) it shouldn't automatically enable a compromise of others running on the same box 1455634446 M * Guy- I'm not sure I see how sharing the sssd cache of the host makes it much easier for an attacker to cross over from one security context to another 1455634485 M * Bertl yeah, well, if that security issue is because of the sshd, then "sharing" it with a guest might bridge the gap between guest and host 1455634496 Q * druschka_domaintechnik Quit: druschka_domaintechnik 1455634775 M * Guy- sssd, not sshd 1455634801 M * Guy- but yes, it's certainly true that exposing the host's sssd to the guests creates an attack surface 1455634834 M * Guy- nevertheless, the benefits outweigh the risk 1455634904 M * Ghislain ..said sony CTO ;p 1455642198 Q * nikolay Remote host closed the connection 1455642644 Q * Sirenia Remote host closed the connection 1455642749 J * Sirenia ~sirenia@454028b1.test.dnsbl.oftc.net 1455642847 Q * Sirenia Max SendQ exceeded 1455642939 Q * Gremble Quit: I Leave 1455643045 J * Sirenia ~sirenia@454028b1.test.dnsbl.oftc.net 1455643109 Q * Sirenia Max SendQ exceeded 1455644605 J * Sirenia ~sirenia@454028b1.test.dnsbl.oftc.net 1455649119 Q * aj__ Ping timeout: 480 seconds 1455649182 Q * eyck Remote host closed the connection 1455650818 J * aj__ ~aj@p578b6aa1.dip0.t-ipconnect.de 1455654537 J * sannes ~ace@2a02:fe0:c131:9070:64d5:f642:a81c:adc9 1455654556 J * eyck ~eyck@u28n61.nowanet.pl 1455656223 Q * Ghislain Read error: Connection reset by peer 1455656656 J * bonbons ~bonbons@2001:a18:221:e001:dd74:95eb:b1de:678a 1455658670 Q * bonbons Quit: Leaving 1455660459 Q * gnarface Quit: Leaving 1455660673 J * gnarface ~gnarface@108-227-52-42.lightspeed.irvnca.sbcglobal.net 1455661662 Q * fosco Remote host closed the connection 1455662271 J * fosco fosco@91.208.40.1 1455663917 Q * arekm Quit: leaving 1455663924 J * arekm ~arekm@phobos.pld-linux.org 1455666873 M * Bertl off for a nap ... bbl 1455666874 N * Bertl Bertl_zZ