Re: Rooting FreeBSD , Privilege Escalation using J
On Sun, May 8, 2011 at 5:31 AM, Jamie Landeg Jones <jamie@bishopston.net> wrote:
>> All the same, I've sent a PR [1] with some doc patches to make people
>> more aware of this -- fulfilling my promise of 2+ years ago :S
>>
>> Thanks!
>>
>> Chris
>>
>> [1] http://www.freebsd.org/cgi/query-pr.cgi?pr=156853
>
> Um. Some problems here.
>
> A jail won't work for not-root users if the jail root directory is chmod 700 - although
> there is obviously a 'chroot' running withing the jail, the jailed user still needs
> to have read permission from the hosts / -- chmod 700 therefore locks all non-root
> users out.
>
It's weird - I don't remember having such problem after setting jails'
root directory permission to 700. I don't have the system anymore so I
can't verify it just yet.
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
討論串 (同標題文章)