WebApp Sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Chroot jails

From: Antoine Martin <antoine () nagafix co uk>
Date: Tue, 20 Sep 2005 18:09:08 +0100
AFAIK, chroot on linux is fundamentally insecure - look for the
'chroot-again' flaw.
Last time I checked it still worked and allowed to escape.

Antoine

On Tue, 2005-09-20 at 17:21 +0100, Steve.Cummings () barclayscapital com
wrote:

Hi All

Wondered if people could give me their opinions on chroot jails on solaris and linux, am interested in both 
manageability but more interested in whether anyone has broken out of one

Regards

Steve
 


------------------------------------------------------------------------
For more information about Barclays Capital, please
visit our web site at http://www.barcap.com.


Internet communications are not secure and therefore the Barclays 
Group does not accept legal responsibility for the contents of this 
message.  Although the Barclays Group operates anti-virus programmes, 
it does not accept responsibility for any damage whatsoever that is 
caused by viruses being passed.  Any views or opinions presented are 
solely those of the author and do not necessarily represent those of the 
Barclays Group.  Replies to this email may be monitored by the Barclays 
Group for operational or business reasons.

------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: