Bugtraq mailing list archives
Re: Buffer Overflows: A Summary
From: adam () HOMEPORT ORG (Adam Shostack)
Date: Mon, 5 May 1997 21:59:33 -0400
Thats not to say that chroot isn't useful. It simply raises the bar less than it used to. The Janus work by Dave Wagner, Ian Goldberg and others at UCB is very interesting. They use ptrace to hook their own checking routines into certain system calls (open, connect, exec) and check the args to the call against a config file. It only runs on Solaris right now, but its an interesting approach adds a layer of security. I played with using it under named, but decided to go with chroot for portability to my other machines. http://www.cs.berkeley.edu/~daw/janus/ Adam Thomas H. Ptacek wrote: |>Another alternative that has the advantage of already existing and being |>relatively easy to use is the chroot() system call. For example, named would |>be a much less attractive target it if chroot()ed to /etc/namedb (or whatever) |>as soon as it knew where its startup directory was. Then all named could do is |>mangle your name service files. | | On almost all Unix operating systems, having superuser access in a | chroot() jail is still dangerous. In some recent revisions of 4.4BSD | operating systems, root can trivially escape chroot(), as well. -- "It is seldom that liberty of any kind is lost all at once." -Hume
Current thread:
- Solaris lpNet & temp files (exploit), (continued)
- Solaris lpNet & temp files (exploit) Chris Sheldon (May 03)
- Re: Solaris lpNet & temp files (exploit) Casper Dik (May 07)
- A bug in Elm fflush (May 04)
- Re: A bug in Elm Larry Schwimmer (May 04)
- Hole in the KDE desktop Alan Cox (May 05)
- A vulnerability in Lynx (all versions) fflush (May 05)
- Re: A vulnerability in Lynx (all versions) Theo de Raadt (May 05)
- SGI Security Advisory 19970101-02-PX - csetup Program SGI Security Coordinator (May 05)
- Solaris lpNet & temp files (exploit) Chris Sheldon (May 03)
- Re: Buffer Overflows: A Summary Thomas H. Ptacek (May 02)
- Comments on NT user list exploit webroot (May 05)
- Re: Buffer Overflows: A Summary Adam Shostack (May 05)
- Re: Buffer Overflows: A Summary Eilon Gishri (May 06)
- Administratrivia Aleph One (May 06)
- SGI Security Advisory 19970501-01-A - Vulnerability in webdist.cgi SGI Security Coordinator (May 06)
- Re: SGI Security Advisory 19970501-01-A - Vulnerability in Kari E. Hurtta (May 06)