|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: chroot useful?
Aleph One (aleph1
dfw.net)
Fri, 14 Nov 1997 11:24:14 -0600 (CST)
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
- Next message: chuck yerkes: "Re: Altavista v TIS toolkit on Linux, which is better?"
- Previous message: Bennett Todd: "Re: Facts, not Fiction"
- In reply to: Chris Brenton: "Re: Facts, not Fiction"
- Next in thread: Steven M. Bellovin: "Re: chroot useful?"
- Reply: Steven M. Bellovin: "Re: chroot useful?"
On Fri, 14 Nov 1997, Steven M. Bellovin wrote:
> That was precisely my point -- that this opinion is not correct. There
> are numerous ways for root to break out of a chroot() "jail"; the simplest
> is to do mknod() to create new special device files for the real disks, and
> mount new file systems on those devices. Many other variants are possible
> as well.
Actually the simplest is:
mkdir("foo",S_IRUSR|S_IXUSR);
chroot("foo");
chdir("..");
Aleph One / aleph1dfw.net
http://underground.org/
KeyID 1024/948FD6B5
Fingerprint EE C9 E8 AA CB AF 09 61 8C 39 EA 47 A8 6A B8 01
- Next message: chuck yerkes: "Re: Altavista v TIS toolkit on Linux, which is better?"
- Previous message: Bennett Todd: "Re: Facts, not Fiction"
- In reply to: Chris Brenton: "Re: Facts, not Fiction"
- Next in thread: Steven M. Bellovin: "Re: chroot useful?"
- Reply: Steven M. Bellovin: "Re: chroot useful?"
This archive was generated by hypermail 2.0b3 on Sat Jul 17 1999 - 07:09:48 CDT