Re: Linux 2.2.18pre21

From: Matthias Andree (matthias.andree@stud.uni-dortmund.de)
Date: Fri Nov 17 2000 - 06:34:01 EST

Next message: Christoph Hellwig: "Re: [PATCH] ALS-110 opl3 and mpu401 under 2.4.0-test10"
Previous message: Alan Cox: "Re: [PATCH] ALS-110 opl3 and mpu401 under 2.4.0-test10"
In reply to: H. Peter Anvin: "Re: Linux 2.2.18pre21"
Next in thread: jesse: "Re: Linux 2.2.18pre21"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 16 Nov 2000, H. Peter Anvin wrote:

> BUG: you *MUST* chdir() into the chroot jail before it does you any
> good at all!
>
> I usually recommend:

#include <sysexits.h>
/* for EX_NOUSER */

> mkdir("foo");
> chdir("foo");
> chroot(".");

add this:

  /* DO REPLACE 500 BY AN EXISTING USER ID */
  /* DO NOT REPLACE IT BY 0! */
  /* DO NOT USE OTHER FUNCTIONS THAN setuid() */
  if(setuid(500)) { _exit(EX_NOUSER); }

(For the records and search engines, most people should know that, but
to have it all in one mail.)
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/

Next message: Christoph Hellwig: "Re: [PATCH] ALS-110 opl3 and mpu401 under 2.4.0-test10"
Previous message: Alan Cox: "Re: [PATCH] ALS-110 opl3 and mpu401 under 2.4.0-test10"
In reply to: H. Peter Anvin: "Re: Linux 2.2.18pre21"
Next in thread: jesse: "Re: Linux 2.2.18pre21"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Nov 23 2000 - 21:00:12 EST