Date: Sun, 15 Jan 2012 15:35:35 +0400 From: Andrey Chernov <ache@FreeBSD.ORG> To: Xin LI <delphij@gmail.com> Cc: src-committers@FreeBSD.ORG, John Baldwin <jhb@FreeBSD.ORG>, svn-src-all@FreeBSD.ORG, svn-src-head@FreeBSD.ORG, Colin Percival <cperciva@FreeBSD.ORG>, Kostik Belousov <kostikbel@gmail.com>, Alexander Kabaev <kabaev@gmail.com> Subject: Re: svn commit: r228843 - head/contrib/telnet/libtelnet head/crypto/heimdal/appl/telnet/libtelnet head/include head/lib/libc/gen head/lib/libc/iconv head/lib/libc/include head/lib/libc/net head/libexec... Message-ID: <20120115113534.GA6439@vniz.net> In-Reply-To: <CAGMYy3uLcak-aQ9oPVRB%2BOARVtj_faXQL-txttAxhgqq2m6Yvw@mail.gmail.com> References: <201112231500.pBNF0c0O071712@svn.freebsd.org> <201112231058.46642.jhb@freebsd.org> <201112231122.34436.jhb@freebsd.org> <20111223120644.75fe944d@kan.dyndns.org> <20111223175143.GJ50300@deviant.kiev.zoral.com.ua> <20111224100509.GA98136@vniz.net> <CAGMYy3s4YM-j165o9p%2BEDgMf0%2BaJq7gKj5yR=LK8_yfECnbtog@mail.gmail.com> <20120115021505.GA88927@vniz.net> <CAGMYy3uLcak-aQ9oPVRB%2BOARVtj_faXQL-txttAxhgqq2m6Yvw@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Jan 15, 2012 at 02:44:35AM -0800, Xin LI wrote: > Why you need anything if the program needs to run something inside the > chroot, which means one already have set up a full chroot environment? 1) ftpds usually not allows to run any program by default. Max default set usualy is: ls, tar, gzip, zip, compress and date. Nobody of them can reset environment and so touch LD_SO_DISABLE. Some external programs can be added to the ftpd config, but it is responsibility of admin to add not unrar but /bin/sh there, i.e. footshooting. 2) It is interesting question: what other camps implements to prevent the problem? I mean other *BSDs and Linuxes. a) If they implement nothing, there is possibility that this artificial problem exists purely in our @secteam exalted minds, which can't review simple patch for >3 years but always are ready for some bit of ugly and unneded creativity. In that particular case it is due to unwilling to pass responsibility to admin who creates chroot() environment. b) If they implement something, why there are no any mentions of it in your list of discussed ideas? -- http://ache.vniz.net/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20120115113534.GA6439>