From owner-freebsd-security@FreeBSD.ORG Thu Jan 15 17:40:43 2009 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5B52C10656EE for ; Thu, 15 Jan 2009 17:40:43 +0000 (UTC) (envelope-from utisoft@googlemail.com) Received: from wf-out-1314.google.com (wf-out-1314.google.com [209.85.200.173]) by mx1.freebsd.org (Postfix) with ESMTP id 28EB88FC14 for ; Thu, 15 Jan 2009 17:40:43 +0000 (UTC) (envelope-from utisoft@googlemail.com) Received: by wf-out-1314.google.com with SMTP id 24so1295329wfg.7 for ; Thu, 15 Jan 2009 09:40:42 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:reply-to :to:subject:mime-version:content-type:content-transfer-encoding :content-disposition; bh=xQe/YLWk7vLKPPpTt4F7na3hxa66oVweIDmnt5uJULQ=; b=Mup3G1Y+yF27qViJIit1cLljVZFknKYRR7DJ4QQhJATUg121ZsTKzBQZ6rfYTNpBfD KyrzTeFSlPtoNmPPEDOojRNwzPuLOy05cq+LhtDyp19BUJXJi6WadpOl/4pLSGkrF+kG I3yFvAT1/5kqfwZCCBpmbMnXtA1rewbxB+wcw= DomainKey-Signature: a=rsa-sha1; c=nofws; d=googlemail.com; s=gamma; h=message-id:date:from:reply-to:to:subject:mime-version:content-type :content-transfer-encoding:content-disposition; b=Jzl+n+yc6VGE+a15WTnyWQsKNPvoQjGvbkSdmN9sPkm2Ef1Z7mPxOMNv721htJkR9b m59nS7nWo466rQdkEKNN7onM60jgIKXux56PAFeh3IU821j+zPG1Ud0TTSRxQQtTbVB5 2HGLGDNCwDi/Pdb9DSHDsTtQp2RvqQnKBote4= Received: by 10.143.10.15 with SMTP id n15mr602463wfi.319.1232039345250; Thu, 15 Jan 2009 09:09:05 -0800 (PST) Received: by 10.142.157.4 with HTTP; Thu, 15 Jan 2009 09:09:05 -0800 (PST) Message-ID: Date: Thu, 15 Jan 2009 17:09:05 +0000 From: "Chris Rees" To: freebsd-security@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline Subject: Thoughts on jail privilege (FAQ submission) X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: utisoft@gmail.com List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 15 Jan 2009 17:40:46 -0000 Hey all, I think that there should be a warning (on the jail man page or handbook page perhaps), on setuid in jails. Ex: John <-- user on the (host) server I give John root access to a jail (just for him to play with), and he then sets vi (for example) to setuid root. He then sshs into the host, and uses $ /usr/jail/johnsandbox/usr/bin/vi /usr/local/etc/sudoers He now has root! Am I completely thick not to have noticed this, or should there be a warning about people being allowed to have root in a jail where they have unprivileged access to the host? Or have I missed the point of a jail? Regards Chris -- R< $&h ! > $- ! $+ $@ $2 < @ $1 .UUCP. > (sendmail.cf)