From owner-freebsd-security@FreeBSD.ORG Sun May 8 02:46:07 2011 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3F23B106566C for ; Sun, 8 May 2011 02:46:07 +0000 (UTC) (envelope-from edhoprima@gmail.com) Received: from mail-bw0-f54.google.com (mail-bw0-f54.google.com [209.85.214.54]) by mx1.freebsd.org (Postfix) with ESMTP id B9D528FC08 for ; Sun, 8 May 2011 02:46:06 +0000 (UTC) Received: by bwz12 with SMTP id 12so4866679bwz.13 for ; Sat, 07 May 2011 19:46:05 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-type; bh=8/phJSqLTkMrdSAv+3gAWEy44o20qXNnuPg97vrvqZQ=; b=Mf4t5h2NI4PVmAgMjXcRSM0sQM/h+neXBc4Kn4KzJ8S/tSvIocnxrxfWFjsc0or/1g Stf1p4obq/MUDIgJ1BcevCaELGPnsAiJve2SQfegPYQvz8zIoovPlX+5j6HXOZyHY6CZ Uv+6DEBriLYm+2ZtlSsCS5kvX5TtKBHrb1CPU= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; b=Kckwwz34ssd43dxFpLZRneaKI0H4i+5JnHh6b+2pOmIAQMQXQ9zgTztB8y04IfMD/h KkvLbC91t6LhQ+YELUPboNttwigI+PNsVpniP1lpE4il6SCk/RWb1S6zRCCqh0AhbblL 9UrkkPwtyaWmqbX5ItPNWXTt340Mu9JZxDcpU= Received: by 10.204.130.16 with SMTP id q16mr1941362bks.192.1304820948127; Sat, 07 May 2011 19:15:48 -0700 (PDT) MIME-Version: 1.0 Received: by 10.204.68.199 with HTTP; Sat, 7 May 2011 19:15:28 -0700 (PDT) In-Reply-To: <201105072231.p47MVktY035491@catflap.bishopston.net> References: <4DC40E21.6040503@gmail.com> <4DC4102E.8000700@gmail.com> <201105072231.p47MVktY035491@catflap.bishopston.net> From: Edho P Arief Date: Sun, 8 May 2011 09:15:28 +0700 Message-ID: To: Jamie Landeg Jones Content-Type: text/plain; charset=UTF-8 Cc: freebsd-security@freebsd.org, feld@feld.me, utisoft@gmail.com Subject: =?utf-8?q?Re=3A_Rooting_FreeBSD_=2C_Privilege_Escalation_using_J?= =?utf-8?b?YWlscyAoUMOvwr/CvXR1cik=?= X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 08 May 2011 02:46:07 -0000 On Sun, May 8, 2011 at 5:31 AM, Jamie Landeg Jones wrote: >> All the same, I've sent a PR [1] with some doc patches to make people >> more aware of this -- fulfilling my promise of 2+ years ago :S >> >> Thanks! >> >> Chris >> >> [1] http://www.freebsd.org/cgi/query-pr.cgi?pr=156853 > > Um. Some problems here. > > A jail won't work for not-root users if the jail root directory is chmod 700 - although > there is obviously a 'chroot' running withing the jail, the jailed user still needs > to have read permission from the hosts / -- chmod 700 therefore locks all non-root > users out. > It's weird - I don't remember having such problem after setting jails' root directory permission to 700. I don't have the system anymore so I can't verify it just yet.