Date: Wed, 11 May 2011 11:51:27 -0400 From: Jason Hellenthal <jhell@DataIX.net> To: Dag-Erling =?iso-8859-1?Q?Sm=F8rgrav?= <des@des.no> Cc: Jamie Landeg Jones <jamie@bishopston.net>, feld@feld.me, Edho P Arief <edhoprima@gmail.com>, freebsd-security@freebsd.org, Poul-Henning Kamp <phk@phk.freebsd.dk>, Bakul Shah <bakul@bitblocks.com>, utisoft@gmail.com Subject: Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur) Message-ID: <20110511155127.GA28725@DataIX.net> In-Reply-To: <86d3jpoa1s.fsf@ds4.des.no> References: <20051.1305023864@critter.freebsd.dk> <86k4dy31v7.fsf@ds4.des.no> <20110510174910.64E48B827@mail.bitblocks.com> <86d3jpoa1s.fsf@ds4.des.no>
next in thread | previous in thread | raw e-mail | index | archive | help
--gKMricLos+KVdGMg Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Dag-Erling, On Wed, May 11, 2011 at 11:34:23AM +0200, Dag-Erling Sm=F8rgrav wrote: > Bakul Shah <bakul@bitblocks.com> writes: > > Dumb question: the jail command can refuse to run unless the > > parent of a jail root is 0700. Would that work? No kernel hack > > required. >=20 > All right, this is getting ridiculous. >=20 +1 --=20 Regards, (jhell) Jason Hellenthal --gKMricLos+KVdGMg Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (FreeBSD) Comment: http://bit.ly/0x89D8547E iQEcBAEBAgAGBQJNyrB/AAoJEJBXh4mJ2FR+AY4H/ivdXhZVrRoVPf672rm2/JeV lZioD49RKfYTuTgKwRQNQM/WnvQH49M9CCL7n15bg2yquL/bTvLGfXf3mEJM5D2q zfJAXTa4o8HMotaFir+vs6ck7sz5XCk+4/KYEPyGivCV8COLxSGBplzphR6b8nSx 9yQoACjJrJ97FOugFJxVNkxDiCjV/nEXbqEnumo3cqMqSpHfXz4THFH3Dyj44wP+ q/IOY2efK5Qj9lBs+m/L9Auws3wnXEH72gLxJivLXIWOeswNoxfqwmBPDVSYIoNc jgkm/TMQuDcoVshXakNqYTXGoLOztBxsyLlDaTJ/574SRAWakda+QvztcT7LH6w= =NA5k -----END PGP SIGNATURE----- --gKMricLos+KVdGMg--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20110511155127.GA28725>