Date: Thu, 19 Dec 2024 21:38:52 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 283425] [nullfs] nosuid bypass Message-ID: <bug-283425-227-XGV5oHfGo3@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-283425-227@https.bugs.freebsd.org/bugzilla/> References: <bug-283425-227@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D283425 --- Comment #1 from Sulev-Madis Silber <bugs-freebsd-org916@ketas.si.pri.ee= > --- 23:35,root@green:~# lh ping -r-sr-xr-x 1 root wheel 61K Oct 30 14:35 ping 23:35,root@green:~# mount_nullfs /root/ /mnt/ 23:35,root@green:~# mount | fgrep ' /mnt ' /root on /mnt (nullfs, local, noatime, nosuid, nfsv4acls) 23:35,root@green:~# su -fm nobody -c '/root/ping -o example.com' ping: socket ssend: Operation not permitted 23:35,root@green:~# su -fm nobody -c '/mnt/ping -o example.com' PING6(56=3D40+8+8 bytes) 2001:7d0:8437:1300:21e:bff:fea2:e000 --> 2606:2800:21f:cb07:6 820:80da:af6b:8b2c 16 bytes from 2606:2800:21f:cb07:6820:80da:af6b:8b2c, icmp_seq=3D0 hlim=3D55 time=3D92.991 ms --- example.com ping6 statistics --- 1 packets transmitted, 1 packets received, 0.0% packet loss round-trip min/avg/max/std-dev =3D 92.991/92.991/92.991/0.000 ms 23:35,root@green:~# --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-283425-227-XGV5oHfGo3>