WebApp Sec mailing list archives
Re: Chroot jails
From: Antoine Martin <antoine () nagafix co uk>
Date: Tue, 20 Sep 2005 18:09:08 +0100
AFAIK, chroot on linux is fundamentally insecure - look for the 'chroot-again' flaw. Last time I checked it still worked and allowed to escape. Antoine On Tue, 2005-09-20 at 17:21 +0100, Steve.Cummings () barclayscapital com wrote:
Hi All Wondered if people could give me their opinions on chroot jails on solaris and linux, am interested in both manageability but more interested in whether anyone has broken out of one Regards Steve ------------------------------------------------------------------------ For more information about Barclays Capital, please visit our web site at http://www.barcap.com. Internet communications are not secure and therefore the Barclays Group does not accept legal responsibility for the contents of this message. Although the Barclays Group operates anti-virus programmes, it does not accept responsibility for any damage whatsoever that is caused by viruses being passed. Any views or opinions presented are solely those of the author and do not necessarily represent those of the Barclays Group. Replies to this email may be monitored by the Barclays Group for operational or business reasons. ------------------------------------------------------------------------
Current thread:
- Chroot jails Steve.Cummings (Sep 20)
- Re: Chroot jails JamesHorwath (Sep 20)
- Re: Chroot jails Antoine Martin (Sep 20)
- Re: Chroot jails Ingo Struck (Sep 20)
- Re: Chroot jails Antoine Martin (Sep 21)
- Re: Chroot jails Ingo Struck (Sep 20)
- Re: Chroot jails Mamading Ceesay (Sep 20)
- Re: Chroot jails xyberpix (Sep 20)
- Re: Chroot jails Paul Wong (Sep 21)
- <Possible follow-ups>
- RE: Chroot jails Craig Wright (Sep 20)
- RE: Chroot jails Wall, Kevin (Sep 21)