Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
Chris Rees
utisoft at gmail.com
Wed May 11 10:06:43 UTC 2011
On 11 May 2011 06:28, "Janne Snabb" <snabb at epipe.com> wrote:
>
> On Tue, 10 May 2011, Bakul Shah wrote:
>
> > Dumb question: the jail command can refuse to run unless the
> > parent of a jail root is 0700. Would that work? No kernel hack
> > required.
>
> I do not think that this should be enforced in kernel, in the jail(8)
> command nor anywhere else. UNIX rm(1) is not opening a pop-up window
> asking "are you sure?" if you do "rm -rf /".
I suggest you test this assertion....
Chris
More information about the freebsd-security
mailing list