Re: can chroot be made safe for non-root?

From: David Wagner (daw@mozart.cs.berkeley.edu)
Date: Fri Oct 18 2002 - 15:14:17 EST

Next message: David Wagner: "Re: [PATCH] remove sys_security"
Previous message: Carl-Daniel Hailfinger: "Re: Forced umount"
In reply to: Pavel Machek: "Re: can chroot be made safe for non-root?"
Next in thread: Shaya Potter: "Re: can chroot be made safe for non-root?"
Reply: Shaya Potter: "Re: can chroot be made safe for non-root?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Pavel Machek wrote:
>> I am eager to be able to sandbox my processes on a system without the
>> help of suid-root programs (as I prefer to have none of these on my
>> system).
>
>You can do that using ptrace. subterfugue.sf.net.

ptrace() is ok, but it also has lots of disadvantages: performance,
expressiveness, security, assurance. I've posted before on this mailing
list, at length, about them. In short, ptrace() is not an ideal solution,
and a secure chroot() or other way to construct a jail/sandbox would
be better. (LSM will be much better.)
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: David Wagner: "Re: [PATCH] remove sys_security"
Previous message: Carl-Daniel Hailfinger: "Re: Forced umount"
In reply to: Pavel Machek: "Re: can chroot be made safe for non-root?"
Next in thread: Shaya Potter: "Re: can chroot be made safe for non-root?"
Reply: Shaya Potter: "Re: can chroot be made safe for non-root?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Wed Oct 23 2002 - 22:00:44 EST