|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Christos Zoulas (christos
zoulas.com)Date: Fri Jul 13 2001 - 15:17:42 CDT
In article <17668.995031778splode.eterna.com.au>,
matthew green <mrgeterna.com.au> wrote:
>
> If a chrooted daemon is running as root, you've already lost. (That
> is, there are plenty of other ways for root to get out of a chroot
> jail.)
>
>
>oh, really? please show us these in NetBSD?
If the security level is < 1 it can be easily be done. Open /dev/kvm,
walk through the process table, find your pid, change its cwdinfo to
another pid's fixing the reference counts. If the security level is
With == 1 you can play tricks with mount points and chroot(2).
With == 2 it is difficult.
christos
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]