Re: chroot wrapper? (Re: Another pbuilder run finished)
On Thu, Jan 02, 2003 at 06:05:22PM +0100, Adrian 'Dagurashibanipal' von Bidder wrote:
> Is there any reason (beyond Unix history), why chroot is root-only? Can
> anything bad happen at all?
Yes. Giving users chroot access would make it even harder to write
correct setuid programs.
Suppose you have write access anywhere on the filesystem that
contains /bin/su. Then you can make a hardlink to /bin/su, put it
in a chroot area that contains a custom /etc/passwd, and enjoy your
new root access.