Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
Dag-Erling Smørgrav
des at des.no
Mon May 9 11:09:23 UTC 2011
Jason Hellenthal <jhell at DataIX.net> writes:
> Chris Rees <utisoft at gmail.com> writes:
> > I've updated the docs patches (links at [1]), though unfortunately it
> > means it's a little less elegant; I'm reluctant to suggest
> >
> > # chmod 0700 $D/..
> Haha I would strongly suggest against that ;) Not knowing where people are
> keeping the jails would impose quite a bit of harm if they did have them
> in places like that or /var/jailname.
What do you mean, "not knowing where people are keeping the jails"?
Only root can start a jail, so there is no risk of anyone starting a
hidden jail somewhere. Besides, jls(8) lists the root path of each
jail.
DES
--
Dag-Erling Smørgrav - des at des.no
More information about the freebsd-security
mailing list