[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: chroot() break

To: john.verne@mks.com (John Verne)
Subject: Re: chroot() break
From: Bill Larson <wllarso@swcp.com>
Date: Wed, 23 May 2001 08:42:50 -0600 (MDT)
Cc: tech@openbsd.org

It may not be direclty applicable to OpenBSD, but it is a general
reference/analysis for chroot operations at
<http://www.bpfh.net/simes/computing/chroot-break.html>.  Take a look
and determine your level of concern.

I operate my systems under the belief that NOTHING can be considered
"perfectly" secured (including Fort Knox!).  A chroot jail can be
viewed as an improvement upon not doing anything, but it shouldn't
be considered perfect either.

Bill Larson

> Share the wealth!  Is there an exploit that has been documented or
> demonstrated?  I did a quick search for known problems with OBSD and
> chroot() on the usual security sites with no luck.

Follow-Ups:
- Re: chroot() break
  - From: matthew patton <mep@netsec.net>

References:
- RE: chroot() break
  - From: John Verne <john.verne@mks.com>

Prev by Date: RE: memory (mbuf) leak in fxp driver.
Next by Date: null pointer derefs
Prev by thread: RE: chroot() break
Next by thread: Re: chroot() break
Index(es):
- Date
- Thread