Re: sys_chroot+sys_fchdir Fix

Alan Cox wrote:

On Fri, 21 Sep 2007 13:39:34 -0400
Phillip Susi <[email protected]> wrote:

David Newall wrote:

* In particular, the superuser can escape from a =91chroot jail=92 by d=
oing=20
=91mkdir foo; chroot foo; cd ..=92.

No, he can not.


The superuser can escape that way - its expected and fine behaviour

Does not work for me, and that would be the EXACT thing chroot issupposed to prevent. Maybe you guys are thinking of a program thatcalls chroot() but leaves cwd outside the chroot still being able tonavigate outside of it?



-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Follow-Ups:
- Re: sys_chroot+sys_fchdir Fix
  - From: Al Viro <[email protected]>

References:
- sys_chroot+sys_fchdir Fix
  - From: majkls <[email protected]>
- Re: sys_chroot+sys_fchdir Fix
  - From: Alan Cox <[email protected]>
- Re: sys_chroot+sys_fchdir Fix
  - From: Bill Davidsen <[email protected]>
- Re: sys_chroot+sys_fchdir Fix
  - From: Alan Cox <[email protected]>
- Re: sys_chroot+sys_fchdir Fix
  - From: David Newall <[email protected]>
- Re: sys_chroot+sys_fchdir Fix
  - From: Phillip Susi <[email protected]>
- Re: sys_chroot+sys_fchdir Fix
  - From: Alan Cox <[email protected]>

Prev by Date: Re: Chroot bug
Next by Date: Re: [PATCH] x86-64: Disable local APIC timer use on AMD systems with C1E
Previous by thread: Re: sys_chroot+sys_fchdir Fix
Next by thread: Re: sys_chroot+sys_fchdir Fix
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Netfilter] [Bugtraq] [Photo] [Stuff] [Gimp] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Video 4 Linux] [Linux for the blind] [Linux Resources]