[ILUG] kernel security hole
paul at clubi.ie
paul at clubi.ie
Fri Feb 15 11:44:11 GMT 2008
On Wed, 13 Feb 2008, Daniel Shaw wrote:
> No. Not always. That's the whole point of chrooting in the first
> place isn't it?
Root can chroot out of a chroot, by design, using chroot(".."). I.e.
an administrator using chroot(1) to chroot a privileged process is
pointless.
It could be useful if the privileged process /itself/ does the chroot
(with the resulting chrooted process(es) not having access to root
privileges).
regards,
--
Paul Jakma paul at clubi.ie paul at jakma.org Key ID: 64A2FF6A
Fortune:
Fat Liberation: because a waist is a terrible thing to mind.
More information about the ILUG
mailing list