Re: chroot() breaks syslog() ?

From: Olaf Titz (olaf@bigred.inka.de)
Date: Mon Aug 04 2003 - 15:19:16 EST

Next message: David Lang: "Re: TOE brain dump"
Previous message: Arjan van de Ven: "RE: your HOWTO "2.6.0-test1 on RH90" - question"
In reply to: Herbert Pötzl: "Re: chroot() breaks syslog() ?"
Next in thread: Torsten Foertsch: "Re: chroot() breaks syslog() ?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> IMHO, devfs in chroot environment, is defeating the purpose
> because if you have access to raw devices, like the device
> your chroot dir is on, you can easily mount that device
> again, and voila you have access to the full tree, if you

You need to be root to mount the device, and as root you can also create
the device special file. A chroot environment does not reliably guard
against root breaking out of it.

Olaf

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: David Lang: "Re: TOE brain dump"
Previous message: Arjan van de Ven: "RE: your HOWTO "2.6.0-test1 on RH90" - question"
In reply to: Herbert Pötzl: "Re: chroot() breaks syslog() ?"
Next in thread: Torsten Foertsch: "Re: chroot() breaks syslog() ?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Aug 07 2003 - 22:00:25 EST