[prev in list] [next in list] [prev in thread] [next in thread] 

List:       full-disclosure
Subject:    [Full-disclosure] Re: Root password change
From:       Chris Adams <cmadams () hiwaay ! net>
Date:       2006-03-30 19:35:37
Message-ID: 20060330193537.GC1495317 () hiwaay ! net
[Download RAW message or body]

Once upon a time, Michael Holstein <michael.holstein@csuohio.edu> said:
> if you're chrooted under /tmp (as it sounds from your email) you're out 
> of luck, unless you have a way to escape the chroot due to a 
> misconfiguration of that environment in the first place.

If you are root, chroot is easy to break (that's why chroot is not
secure for root-owned processes).

-- 
Chris Adams <cmadams@hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[prev in list] [next in list] [prev in thread] [next in thread]