From owner-freebsd-security Thu Oct 11 5:55:44 2001 Delivered-To: freebsd-security@freebsd.org Received: from relay2.agava.net.ru (ofc.agava.net [213.59.3.194]) by hub.freebsd.org (Postfix) with ESMTP id 9AF4637B405 for ; Thu, 11 Oct 2001 05:55:41 -0700 (PDT) Received: from hellbell.domain (hellbell.domain [192.168.1.12]) by relay2.agava.net.ru (Postfix) with ESMTP id 8BE17667D1 for ; Thu, 11 Oct 2001 16:55:39 +0400 (MSD) Received: from localhost (localhost [127.0.0.1]) by hellbell.domain (Postfix) with ESMTP id 39275CCC9 for ; Thu, 11 Oct 2001 16:55:39 +0400 (MSD) Date: Thu, 11 Oct 2001 16:55:39 +0400 (MSD) From: Alexey Zakirov X-X-Sender: Cc: Subject: Re: jail(8) In-Reply-To: <1544247985.20011011133649@void.ru> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Thu, 11 Oct 2001 void@void.ru wrote: > After setting up a virtual enviroment using JAIL(8) I've encountered > the following problem: setuid/setgid bit became no more effective. So, > this screwed up apache's suexec, passwd(1) and several other apps > whose setuidness is nessesary for their normal operation flow. Probably you've done something wrong because I use jail intensive and sugid works just fine: frank@evidence:~/tmp$ ls -l total 8 -r-sr-xr-x 1 root wheel 6692 Oct 11 16:52 id frank@evidence:~/tmp$ id uid=1038(frank) gid=32(users) groups=32(users), 0(wheel) frank@in-evidence:~/tmp$ ./id uid=1038(frank) euid=0(root) gid=32(users) groups=32(users), 0(wheel) frank@in-evidence:~/tmp$ ps -p $$ PID TT STAT TIME COMMAND 35765 p3 SsJ 0:00.06 /usr/local/bin/bash *** WBR, Alexey Zakirov (frank@agava.com) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message