From owner-freebsd-hackers  Wed Nov 13 11:28: 3 2002
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3BA7037B401
	for <hackers@FreeBSD.ORG>; Wed, 13 Nov 2002 11:28:03 -0800 (PST)
Received: from apollo.backplane.com (apollo.backplane.com [216.240.41.2])
	by mx1.FreeBSD.org (Postfix) with ESMTP id D40B243E4A
	for <hackers@FreeBSD.ORG>; Wed, 13 Nov 2002 11:28:02 -0800 (PST)
	(envelope-from dillon@apollo.backplane.com)
Received: from apollo.backplane.com (localhost [127.0.0.1])
	by apollo.backplane.com (8.12.5/8.12.5) with ESMTP id gADJS0FC085878;
	Wed, 13 Nov 2002 11:28:00 -0800 (PST)
	(envelope-from dillon@apollo.backplane.com)
Received: (from dillon@localhost)
	by apollo.backplane.com (8.12.5/8.12.5/Submit) id gADJRxP8085877;
	Wed, 13 Nov 2002 11:27:59 -0800 (PST)
	(envelope-from dillon)
Date: Wed, 13 Nov 2002 11:27:59 -0800 (PST)
From: Matthew Dillon <dillon@apollo.backplane.com>
Message-Id: <200211131927.gADJRxP8085877@apollo.backplane.com>
To: Poul-Henning Kamp <phk@critter.freebsd.dk>
Cc: <hackers@FreeBSD.ORG>
Subject: tty/pty devices not safe in jail?
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-hackers.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-hackers>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-hackers>
X-Loop: FreeBSD.ORG

    Hmm.  While tracking down a null mount issue I think I might have
    come across a potentially serious problem with jail.  It seems to
    me that it would be possible for someone inside a jailed environment
    to 'steal' pty's, tty's, or the tty side of a pty that is being
    used from within other jails or by processes outside the jail.  Has
    this ever come up before?

					-Matt

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message