|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: chroot useful?
Bernhard Schneck (Bernhard_Schneck
genua.de)
Fri, 14 Nov 1997 09:28:54 +0100
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
- Next message: Bennett Todd: "Re: Facts, not Fiction"
- Previous message: Darren Reed: "Re: chroot useful?"
- In reply to: Douglas R. Steinbaum: "Re: chroot useful?"
- Next in thread: Paul McNabb: "Re: chroot useful?"
In message <199711132205.RAA01373itd.nrl.navy.mil> you write:
> I was under the impression that running the chroot() command on a UNIX
> box would make it impossible for all subsequently launched programs to
> access files located above the newly defined root point, even if such
> programs are launched with a UID of 0. [...]
Probably most members of this list know already (or why would this
be a ``wizzards'' list :-), but the usual unix/posix system call
specifications *require* a way to break out of a chroot environment
(at least for root).
So either don't trust chroot, or don't be posix.
\Bernhard.
- Next message: Bennett Todd: "Re: Facts, not Fiction"
- Previous message: Darren Reed: "Re: chroot useful?"
- In reply to: Douglas R. Steinbaum: "Re: chroot useful?"
- Next in thread: Paul McNabb: "Re: chroot useful?"
This archive was generated by hypermail 2.0b3 on Sat Jul 17 1999 - 07:09:48 CDT