Re: Chroot breach in 2.1.100+

Chris Wedgwood (chris@cybernet.co.nz)
Mon, 21 Sep 1998 15:24:38 +1200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Tim Smith: "Re: 2.1.120 - too many errors on the network interfaces"
Previous message: Michael Shields: "Re: sound network driver"

On Sun, Sep 20, 1998 at 06:32:01PM -0400, Alexander Viro wrote:

> In some cases chroot jail can be broken by process with UID==0.

chroot jails are pointless with UID==0.

root can always do something like:

mkdir tmp # make a temp dir in the jail
chroot tmp # move root to that
cd ../../../../../ # step back...

to escape anyhow.

root can do so many other things anyhow, a chroot jail for root is
pointless.

-cw

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: Tim Smith: "Re: 2.1.120 - too many errors on the network interfaces"
Previous message: Michael Shields: "Re: sound network driver"