Date: Fri, 18 Dec 1998 20:57:52 -0800 From: "Jordan K. Hubbard" <jkh@zippy.cdrom.com> To: "Marco Molteni" <molter@tin.it> Cc: freebsd-security@FreeBSD.ORG Subject: Re: A better explanation (was: buffer overflows and chroot) Message-ID: <64687.914043472@zippy.cdrom.com> In-Reply-To: Your message of "Fri, 18 Dec 1998 19:57:07 %2B0100." <Pine.BSF.3.96.981218193124.339A-100000@nympha>
next in thread | previous in thread | raw e-mail | index | archive | help
> Scenario: > > [all reasonable points elided] > 5. I want to put him in a chroot jail full of suid binaries, but suid > not to root, to pseudoroot, where pseudoroot is a non privileged user. That won't work, however, since he can still "break out" of the chroot jail very easily, especially if he's someone who "knows his stuff" as you seem to indicate. It's a jail with paper mache' bars, nothing more. I still think he needs his own machine, full stop. - Jordan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?64687.914043472>