Re: jail..

Subject: Re: jail..
From: Poul-Henning Kamp (phkcritter.freebsd.dk)
Date: Mon Jan 31 2000 - 01:36:32 CST

• Next message: Martin Welk: "Re: Continual DNS requests from mysterious IP"
• Previous message: Peter Jeremy: "Re: ntpd configuration and strange time "jumps""
• In reply to: Dmitry Valdov: "jail.."
• Next in thread: Vladimir Dubrovin: "Re: jail.."
• Reply: Poul-Henning Kamp: "Re: jail.."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

In message <Pine.BSF.3.95q.1000131025803.12484A-100000xkis.kis.ru>, Dmitry Val
dov writes:
>Hello!
>
>It is possible to take root on entire machine if someone has an account on
>it an root under jail.
>for example, we're running jail with chroot to /usr/jail. Someone have root
>in chroot'ed environment.
>So, he can create setuid shell in /usr/jail.
>But if he have normail account on machine, he can run it from /usr/jail and
>take root on entire machine.
>chmod /usr/jail doesn't help because chrooted / cannot be read by anyone :(
>
>I think that the right solution is to make directory for chroot under 700's
>directory. Should it be documented in jail man page?

The right solution is to not give any accouns outside the jails.

--
Poul-Henning Kamp             FreeBSD coreteam member
phkFreeBSD.ORG               "Real hackers run -current on their laptop."
FreeBSD -- It will take a long time before progress goes too far!
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

• Next message: Martin Welk: "Re: Continual DNS requests from mysterious IP"
• Previous message: Peter Jeremy: "Re: ntpd configuration and strange time "jumps""
• In reply to: Dmitry Valdov: "jail.."
• Next in thread: Vladimir Dubrovin: "Re: jail.."
• Reply: Poul-Henning Kamp: "Re: jail.."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b27 : Mon Jan 31 2000 - 01:38:22 CST