Alan Cox wrote:
quoted text > On Wed, 19 Sep 2007 09:19:50 +0200
> majkls <majkls@prepere.com> wrote:
>
>> Hello,
>> here is an fix to an exploit (obtained somewhere in internet). This
>> exploit can workaround chroot with CAP_SYS_CHROOT. It is also possible
>> (with sufficient filedescriptor (if there is na directory fd opened in
>> root) workaround chroot with sys_fchdir. This patch fixes it.
>
>
> If you have the ability to use chroot() you are root. If you are root you
> can walk happily out of any chroot by a thousand other means.
>
I thought this was to prevent breaking out of chroot as a normal user.
ie. chroot /var/myjail /bin/su - guest
or similar.
--
Bill Davidsen <davidsen@tmr.com>
"We have more to fear from the bungling of the incompetent than from
the machinations of the wicked." - from Slashdot
-
unsubscribe notice To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to
majordomo@vger.kernel.org
More majordomo info at
http://vger.kernel.org/majordomo-info.html
Please read the FAQ at
http://www.tux.org/lkml/ Messages in current thread:
Re: sys_chroot+sys_fchdir Fix , Bill Davidsen , (Wed Sep 19, 2:27 pm)
