From owner-freebsd-security@FreeBSD.ORG  Wed May 11 10:20:50 2011
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 53F95106566B
	for <freebsd-security@freebsd.org>;
	Wed, 11 May 2011 10:20:50 +0000 (UTC) (envelope-from snabb@epipe.com)
Received: from tiktik.epipe.com (tiktik.epipe.com [IPv6:2001:1828:0:3::2])
	by mx1.freebsd.org (Postfix) with ESMTP id 137B58FC15
	for <freebsd-security@freebsd.org>;
	Wed, 11 May 2011 10:20:50 +0000 (UTC)
Received: from tiktik.epipe.com (tiktik.epipe.com [IPv6:2001:1828:0:3::2])
	by tiktik.epipe.com (8.14.4/8.14.4) with ESMTP id p4BAKgm3010192
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO);
	Wed, 11 May 2011 10:20:42 GMT (envelope-from snabb@epipe.com)
X-DKIM: Sendmail DKIM Filter v2.8.3 tiktik.epipe.com p4BAKgm3010192
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=epipe.com; s=default;
	t=1305109242; x=1305714042;
	bh=zmica1pqPD2s/KyHLRkWirRyk+6v7QkUDFeYu2ILfO4=;
	h=Date:From:To:cc:Subject:In-Reply-To:Message-ID:References:
	MIME-Version:Content-Type;
	b=lCnlTv3FYeSLaajPCz0x4na10PXrHsiLT9z/0Ds9cq0VRnv5s1oCStnU4d2LTTaY0
	fl5kK2PxKJjFAGDqTo05aFEHAZ6sAP+WFyhO4/iHaxDW4s+VdgLc9bZqA2xzPONhz9
	m/B5MwZeuQG+ejQnAXrS10MbB6olntnD/gXDinKQ=
Date: Wed, 11 May 2011 10:20:42 +0000 (UTC)
From: Janne Snabb <snabb@epipe.com>
To: Chris Rees <utisoft@gmail.com>
In-Reply-To: <BANLkTimjNOctOgZv09Sx-VFwOcAPKoAb3w@mail.gmail.com>
Message-ID: <alpine.BSF.2.00.1105111014030.33272@tiktik.epipe.com>
References: <20051.1305023864@critter.freebsd.dk> <86k4dy31v7.fsf@ds4.des.no>
	<20110510174910.64E48B827@mail.bitblocks.com>
	<alpine.BSF.2.00.1105110456050.33272@tiktik.epipe.com>
	<BANLkTimjNOctOgZv09Sx-VFwOcAPKoAb3w@mail.gmail.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Greylist: Sender passed SPF test, not delayed by milter-greylist-4.2.7
	(tiktik.epipe.com [IPv6:2001:1828:0:3::2]);
	Wed, 11 May 2011 10:20:42 +0000 (UTC)
Cc: Jamie Landeg Jones <jamie@bishopston.net>, feld@feld.me,
	Edho P Arief <edhoprima@gmail.com>, freebsd-security@freebsd.org,
	Poul-Henning Kamp <phk@phk.freebsd.dk>, Bakul Shah <bakul@bitblocks.com>,
	=?ISO-8859-15?Q?Dag-Erling_Sm=F8rgrav?= <des@des.no>
Subject: Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 11 May 2011 10:20:50 -0000

On Wed, 11 May 2011, Chris Rees wrote:

> On 11 May 2011 06:28, "Janne Snabb" <snabb@epipe.com> wrote:
> > UNIX rm(1) is not opening a pop-up window
> > asking "are you sure?" if you do "rm -rf /".
> 
> I suggest you test this assertion....

I am surprised. I guess I have not done that for a while:

rm: "/" may not be removed

Off-topic. Bad example. Replace with something more appropriate
(such as the need to update jail directory tree contents without
being root in the host system). Sorry.

--
Janne Snabb / EPIPE Communications
snabb@epipe.com - http://epipe.com/