From owner-svn-src-all@FreeBSD.ORG Sun Jan 15 11:35:44 2012 Return-Path: Delivered-To: svn-src-all@FreeBSD.ORG Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4D96B106566B for ; Sun, 15 Jan 2012 11:35:44 +0000 (UTC) (envelope-from ache@vniz.net) Received: from vniz.net (vniz.net [194.87.13.69]) by mx1.freebsd.org (Postfix) with ESMTP id A80178FC14 for ; Sun, 15 Jan 2012 11:35:43 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by vniz.net (8.14.5/8.14.5) with ESMTP id q0FBZb02006809; Sun, 15 Jan 2012 15:35:37 +0400 (MSK) (envelope-from ache@vniz.net) Received: (from ache@localhost) by localhost (8.14.5/8.14.5/Submit) id q0FBZatG006808; Sun, 15 Jan 2012 15:35:36 +0400 (MSK) (envelope-from ache) Date: Sun, 15 Jan 2012 15:35:35 +0400 From: Andrey Chernov To: Xin LI Message-ID: <20120115113534.GA6439@vniz.net> Mail-Followup-To: Andrey Chernov , Xin LI , Kostik Belousov , Alexander Kabaev , John Baldwin , Colin Percival , src-committers@FreeBSD.ORG, svn-src-all@FreeBSD.ORG, svn-src-head@FreeBSD.ORG References: <201112231500.pBNF0c0O071712@svn.freebsd.org> <201112231058.46642.jhb@freebsd.org> <201112231122.34436.jhb@freebsd.org> <20111223120644.75fe944d@kan.dyndns.org> <20111223175143.GJ50300@deviant.kiev.zoral.com.ua> <20111224100509.GA98136@vniz.net> <20120115021505.GA88927@vniz.net> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.21 (2010-09-15) Cc: src-committers@FreeBSD.ORG, John Baldwin , svn-src-all@FreeBSD.ORG, svn-src-head@FreeBSD.ORG, Colin Percival , Kostik Belousov , Alexander Kabaev Subject: Re: svn commit: r228843 - head/contrib/telnet/libtelnet head/crypto/heimdal/appl/telnet/libtelnet head/include head/lib/libc/gen head/lib/libc/iconv head/lib/libc/include head/lib/libc/net head/libexec... X-BeenThere: svn-src-all@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "SVN commit messages for the entire src tree \(except for " user" and " projects" \)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 15 Jan 2012 11:35:44 -0000 On Sun, Jan 15, 2012 at 02:44:35AM -0800, Xin LI wrote: > Why you need anything if the program needs to run something inside the > chroot, which means one already have set up a full chroot environment? 1) ftpds usually not allows to run any program by default. Max default set usualy is: ls, tar, gzip, zip, compress and date. Nobody of them can reset environment and so touch LD_SO_DISABLE. Some external programs can be added to the ftpd config, but it is responsibility of admin to add not unrar but /bin/sh there, i.e. footshooting. 2) It is interesting question: what other camps implements to prevent the problem? I mean other *BSDs and Linuxes. a) If they implement nothing, there is possibility that this artificial problem exists purely in our @secteam exalted minds, which can't review simple patch for >3 years but always are ready for some bit of ugly and unneded creativity. In that particular case it is due to unwilling to pass responsibility to admin who creates chroot() environment. b) If they implement something, why there are no any mentions of it in your list of discussed ideas? -- http://ache.vniz.net/