Date: Mon, 16 Apr 2001 15:53:08 -0600 (MDT) From: FreeBSD <freebsd@XtremeDev.com> To: Roelof Osinga <roelof@nisser.com> Cc: Odhiambo Washington <wash@wananchi.com>, FBSD-Q <freebsd-questions@FreeBSD.ORG> Subject: Re: Starting JAIL Message-ID: <20010416154914.H79383-100000@Amber.XtremeDev.com> In-Reply-To: <3ADB6418.D9B96B6F@nisser.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 16 Apr 2001, Roelof Osinga wrote: > You don't. Jail it might be, but it's still chroot() based (granted, > I'll be whipped horribly if tell it wrong... but, hey! You only live > once ;) and chroot's can be broken out of. Especially when you hand > them a shell. I'm curious as to how a user can break out of a FreeBSD chroot. According to http://docs.freebsd.org/44doc/papers/jail/jail-6.html#section8, three three classes of chroot attacks were countered in FreeBSD. Are there other ways to break out of chroot than those mentioned? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010416154914.H79383-100000>