From owner-freebsd-security@FreeBSD.ORG Fri Jan 16 15:40:10 2009 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8241D1065674 for ; Fri, 16 Jan 2009 15:40:10 +0000 (UTC) (envelope-from keramida@ceid.upatras.gr) Received: from mx-out.forthnet.gr (mx-out.forthnet.gr [193.92.150.104]) by mx1.freebsd.org (Postfix) with ESMTP id E8EC98FC18 for ; Fri, 16 Jan 2009 15:40:09 +0000 (UTC) (envelope-from keramida@ceid.upatras.gr) Received: from mx-av-05.forthnet.gr (mx-av.forthnet.gr [193.92.150.27]) by mx-out-05.forthnet.gr (8.14.3/8.14.3) with ESMTP id n0GFTShR031756; Fri, 16 Jan 2009 17:29:28 +0200 Received: from MX-IN-01.forthnet.gr (mx-in-01.forthnet.gr [193.92.150.23]) by mx-av-05.forthnet.gr (8.14.3/8.14.3) with ESMTP id n0GFTSTH028157; Fri, 16 Jan 2009 17:29:28 +0200 Received: from kobe.laptop (adsl145-182.kln.forthnet.gr [195.74.244.182]) by MX-IN-01.forthnet.gr (8.14.3/8.14.3) with ESMTP id n0GFTLKQ020289; Fri, 16 Jan 2009 17:29:21 +0200 Authentication-Results: MX-IN-01.forthnet.gr smtp.mail=keramida@ceid.upatras.gr; spf=neutral Authentication-Results: MX-IN-01.forthnet.gr header.from=keramida@ceid.upatras.gr; sender-id=neutral Received: from kobe.laptop (kobe.laptop [127.0.0.1]) by kobe.laptop (8.14.3/8.14.3) with ESMTP id n0GFTJGL038977; Fri, 16 Jan 2009 17:29:19 +0200 (EET) (envelope-from keramida@ceid.upatras.gr) Received: (from keramida@localhost) by kobe.laptop (8.14.3/8.14.3/Submit) id n0GFTJeu038976; Fri, 16 Jan 2009 17:29:19 +0200 (EET) (envelope-from keramida@ceid.upatras.gr) From: Giorgos Keramidas To: utisoft@gmail.com References: Date: Fri, 16 Jan 2009 17:29:18 +0200 In-Reply-To: (Chris Rees's message of "Thu, 15 Jan 2009 17:09:05 +0000") Message-ID: <87sknjjmlt.fsf@kobe.laptop> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.0.60 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Cc: freebsd-security@freebsd.org Subject: Re: Thoughts on jail privilege (FAQ submission) X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Jan 2009 15:40:10 -0000 On Thu, 15 Jan 2009 17:09:05 +0000, "Chris Rees" wrote: > Hey all, > > I think that there should be a warning (on the jail man page or > handbook page perhaps), on setuid in jails. Ex: > > John <-- user on the (host) server > > I give John root access to a jail (just for him to play with), and he > then sets vi (for example) to setuid root. He then sshs into the host, > and uses > > $ /usr/jail/johnsandbox/usr/bin/vi /usr/local/etc/sudoers > > He now has root! If the host system and the jail share the `john' user *and* you are sharing `/usr/local' as read-write between the host and the jail, then ``you are doing it wrong!''. But that's a good warning to add somewhere in the jail documentation :)