Date: Mon, 27 Jul 1998 16:46:44 -0500 From: Jacques Vidrine <n@nectar.com> To: Terry Lambert <tlambert@primenet.com> Cc: hackers@FreeBSD.ORG Subject: Re: inetd enhancements Message-ID: <E0z0v6S-0001Lq-00@spawn.nectar.com> In-Reply-To: <199807271908.MAA23572@usr02.primenet.com> References: <199807271908.MAA23572@usr02.primenet.com>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE-----
On 27 July 1998 at 19:08, Terry Lambert <tlambert@primenet.com> wrote:
> I like the idea; I'd like more information on the implementation
> (a 50,000 foot view)...
> > * binding selected services to a particular interface
> Do you so this by adding an "interface list" field?
Yes, where the list length ``n'' is constrained as: 0 <= n <= 1 :-)
Seriously, this shouldn't be tough to add if it is deemed useful.
You can currently accomplish this with multiple definitions of
the service, each with a different interface specified.
> > * chroot'ing before exec'ing the service
> Do you run as other-than-root before you do this?
Yes. I chroot(), then chdir("/"). setusercontext(),
sigaction(), and execv() are called afterward.
> Root can escape
> a chroot jail because of the way the chroot root vnode is (in my
> opinion) incorrectly set to NULL instead of the real root for the
> non-chroot case (fixing this would incidently simplify the namei code).
>
> The "ftpd" case is especially vulnerable...
I don't follow. Could you give an example scenario of an exploit?
- --
Jacques Vidrine <n@nectar.com>
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
iQCVAwUBNbz1RDeRhT8JRySpAQGoTQP/e1yzs5UdlVBYyXq3Smh/W1jW8wVWl+2H
sv3dZ7rhxNUzabIoYiK34VdBkMWnNXlGM4bmlL/0Yl4JYHy1Lkpyi//zeLHDAOKd
dYx5kSqA5yNqgF1LW/cMMElA3+0xgZgHkSIi9guMi4VHnZarUOb1ryKTFrAl0yry
cbIebEsL3CM=
=F8Du
-----END PGP SIGNATURE-----
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?E0z0v6S-0001Lq-00>