[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: breaking out of a chroot
From: |
Thomas Bushnell BSG |
Subject: |
Re: breaking out of a chroot |
Date: |
Wed, 18 May 2005 07:16:47 -0700 |
User-agent: |
Gnus/5.1007 (Gnus v5.10.7) Emacs/21.4 (gnu/linux) |
"Neal H. Walfield" <neal@walfield.org> writes:
> I'm not suggesting that we should fix Unix's chroot with our chroot.
> However, there are a fair number of programs (namely daemons) which
> understand the security holes and are able, nevertheless, to take
> advantages of Unix's chroot behavior. The fact that our chroot is
> less secure than Unix's deserves, I think, at least a caveat.
Yes, that's a documentation bug. :)
It is possible that we should have a facility for those daemons to
use, but regardless we should make clear that the Hurd's chroot is not
a security feature.