|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: chroot question: Hardlinks or softlinks
From: Luca Berra (bluca
comedia.it)
Date: Tue Dec 02 2003 - 03:14:12 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Tue, Dec 02, 2003 at 09:56:49AM +0100, Ralf Hildebrandt wrote:
>ln /etc/resolv.conf $queue_directory/etc/resolv.conf
this would work only if /etc and $queue_directory are on the same
filesystem, which is a _very_ _bad_ idea (not only from a security
perspective)
>ln -s $queue_directory/etc/resolv.conf /etc/resolv.conf
this works, but if the purpose of chroot is removing the possibility for
an attacker to make system wide changes, i would not make
$queue_directory/etc/resolv.conf a system file.
what's wrong with copying the file? is it changed that often?
L.
--
Luca Berra -- blucacomedia.it
Communication Media & Services S.r.l.
/"\
\ / ASCII RIBBON CAMPAIGN
X AGAINST HTML MAIL
/ \
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]