Date: Tue, 17 Apr 2001 16:06:03 +0200 From: Roelof Osinga <roelof@nisser.com> To: FreeBSD <freebsd@XtremeDev.com> Cc: Odhiambo Washington <wash@wananchi.com>, FBSD-Q <freebsd-questions@FreeBSD.ORG> Subject: Re: Starting JAIL Message-ID: <3ADC4DCB.9167BFBB@nisser.com> References: <20010416154914.H79383-100000@Amber.XtremeDev.com>
next in thread | previous in thread | raw e-mail | index | archive | help
FreeBSD wrote: > > ... > I'm curious as to how a user can break out of a FreeBSD chroot. According > to http://docs.freebsd.org/44doc/papers/jail/jail-6.html#section8, three > three classes of chroot attacks were countered in FreeBSD. Are there other > ways to break out of chroot than those mentioned? None that I know, but that ain't saying much. But do consider the amount of tedious, even manual, labour that went into it. Structured code walkthroughs aren't the world most exciting tasks. Except when you're a cracker looking for a hole in the wall, of course. Also, the jail code went live not so long ago. It's still early days. For production systems I think it's courting trouble (providing shell access, that is). It's truly a great and exciting step forward... very promising <g>. Roelof To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3ADC4DCB.9167BFBB>