Re: Linux proc exploit

Alan Cox (alan@lxorguk.ukuu.org.uk)
Thu, 27 Nov 1997 09:03:12 +0000 (GMT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Pavel Machek: "Re: [patch][x86][hardcntr] Harware counter per process support"
Previous message: Topi Miettinen: "Re: Linux proc exploit"
In reply to: Topi Miettinen: "Re: Linux proc exploit"
Next in thread: Chris Evans: "Re: Linux proc exploit"

> What if we had per-process securelevel flag, inherited at fork etc., which
> would make (f)suser return 0 everytime for these processes?

A simple hack to do this is to make suser() check you are not chrooted
but you can equally have no root stuff in the chroot area

Next message: Pavel Machek: "Re: [patch][x86][hardcntr] Harware counter per process support"
Previous message: Topi Miettinen: "Re: Linux proc exploit"
In reply to: Topi Miettinen: "Re: Linux proc exploit"
Next in thread: Chris Evans: "Re: Linux proc exploit"