| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 26 Sep 2007 12:38:33 +0100 From: Alan Cox <alan@...rguk.ukuu.org.uk> To: David Newall <david@...idnewall.com> Cc: Al Viro <viro@....linux.org.uk>, Phillip Susi <psusi@....rr.com>, Bill Davidsen <davidsen@....com>, majkls <majkls@...pere.com>, bunk@...tum.de, linux-kernel@...r.kernel.org Subject: Re: sys_chroot+sys_fchdir Fix > I've made no error. The documentation says what it says, and what it > doesn't say, other than for Linux, is that there is an unspecified way > of breaking out. Now see I've been working on Unix systems since 1988 or so and in that time I've learned to read the documentation properly (you haven't) and I've also don't security work on a pile of systems. Your assumptions and your whole mental model of this are horribly broken. > If you're so keen on trying things, then I challenge you to try it on, > oh, say, BSD, and then admit your error. (Such hostile words.) FreeBSD isn't a Unix system, and isn't compliant to the spec. Its also still trivial to get out of a freebsd chroot using things like ptrace. FreeBSD jails on the other hand do what you confusedly seem to think should happen with chroot. They are seperate precisely because they are different. Alan - To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists