[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <46FA341A.80706@davidnewall.com>
Date: Wed, 26 Sep 2007 19:57:38 +0930
From: David Newall <david@...idnewall.com>
To: Kyle Moffett <mrmacman_g4@....com>
CC: Adrian Bunk <bunk@...nel.org>, Alan Cox <alan@...rguk.ukuu.org.uk>,
"Serge E. Hallyn" <serge@...lyn.com>,
Bill Davidsen <davidsen@....com>,
Philipp Marek <philipp@...ek.priv.at>, 7eggert@....de,
majkls <majkls@...pere.com>, bunk@...tum.de,
linux-kernel@...r.kernel.org
Subject: Re: Chroot bug
Kyle Moffett wrote:
> David, please do tell myself and Adrian how "locking down" chroot()
> the way you want will avoid letting root break out through any of the
> above ways?
As has been said, there are thousands of ways to break out of a chroot.
It's just that one of them should not be that chroot lets you walk out.
I can't explain it clearer than that. If you don't see it now you
probably never will.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists