Date: Sun, 15 Nov 1998 12:56:03 -0800 From: Mike Smith <mike@smith.net.au> To: Harold Gutch <logix@foobar.franken.de> Cc: zhihuizhang <bf20761@binghamton.edu>, hackers <freebsd-hackers@FreeBSD.ORG> Subject: Re: Question on chroot() Message-ID: <199811152056.MAA14163@dingo.cdrom.com> In-Reply-To: Your message of "Sun, 15 Nov 1998 20:08:13 %2B0100." <19981115200813.B12524@foobar.franken.de>
next in thread | previous in thread | raw e-mail | index | archive | help
> On Sun, Nov 15, 1998 at 09:56:32AM -0800, Mike Smith wrote: > > Breaking out of a chroot'ed environment is less easy if you're not > > root > Is this meant to be read as "more or less impossible", that is, > impossible unless the user can become root first (due to insecure > suid-root binaries in the chroot-environment etc.), or can users > really break out in more or less every situation (of course > assuming stuff like that they don't have any open filehandles > pointing to the outside in the beginning). It's quite difficult to break out of a chroot'ed environment, yes, and it's intended to be impossible, so obviously you can only get out through flaws in the implementation... -- \\ Sometimes you're ahead, \\ Mike Smith \\ sometimes you're behind. \\ mike@smith.net.au \\ The race is long, and in the \\ msmith@freebsd.org \\ end it's only with yourself. \\ msmith@cdrom.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199811152056.MAA14163>