Re: [PATCH] User chroot

Marcus Sundberg (marcus@cendio.se)
27 Jun 2001 17:39:12 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Jonathan Lundell: "Re: [PATCH] proc_file_read() (Was: Re: proc_file_read() question)"
Previous message: Andi Kleen: "Re: printk and sk_buffs"
In reply to: H. Peter Anvin: "Re: [PATCH] User chroot"
Next in thread: Paul Menage: "Re: [PATCH] User chroot"

hpa@zytor.com ("H. Peter Anvin") writes:

> Followup to: <20010627014534.B2654@ondska>
> By author: Jorgen Cederlof <jc@lysator.liu.se>
> In newsgroup: linux.dev.kernel
> > If we only allow user chroots for processes that have never been
> > chrooted before, and if the suid/sgid bits won't have any effect under
> > the new root, it should be perfectly safe to allow any user to chroot.
>
> Safe, perhaps, but also completely useless: there is no way the user
> can set up a functional environment inside the chroot.

Huh? Why wouldn't you be able to set up a functional environment?
I can think of quite a lot of things you can do without device nodes
or /proc ...
Or are you referring to something else?

//Marcus

-- 
---------------------------------+---------------------------------
         Marcus Sundberg         |      Phone: +46 707 452062
   Embedded Systems Consultant   |     Email: marcus@cendio.se
        Cendio Systems AB        |      http://www.cendio.com
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Next message: Jonathan Lundell: "Re: [PATCH] proc_file_read() (Was: Re: proc_file_read() question)"
Previous message: Andi Kleen: "Re: printk and sk_buffs"
In reply to: H. Peter Anvin: "Re: [PATCH] User chroot"
Next in thread: Paul Menage: "Re: [PATCH] User chroot"