Re: Different roots for each process possible?

To: debian-hurd@lists.debian.org
Subject: Re: Different roots for each process possible?
From: Robert Bihlmeyer <robbe@orcus.priv.at>
Date: 31 Mar 2001 14:00:17 +0200
Message-id: <[🔎] 87y9tmjgha.fsf@hoss.orcus.priv.at>
In-reply-to: Gordon Matzigkeit's message of "30 Mar 2001 11:45:21 -0600"
References: <[🔎] 200103300908.f2U988920174@neuralgia.linnaean.org> <[🔎] 87puezqnq8.fsf@hoss.orcus.priv.at> <[🔎] 87itkrb172.fsf@faust.FIG>

Gordon Matzigkeit <gord@fig.org> writes:

> I think there's a misunderstanding here. [...]

Thanks for the explanation. I thought that Roland wanted the chdir for
the Unix reasons, while the Hurd reasons and effects are quite
different. I'll go now and chant a thousand times: "Gnu's not Unix".

>  Robbe> Morale of the story: keeping a uid=0 process in a chroot jail
>  Robbe> is moderately pointless. Give it a higher uid, too.
> 
> I don't think that's necessary, for the reasons above.

While the most simplest route to escape a chroot is barred, I'm sure
there are others still (e.g. root can still access mach devices), so
I stand by that advice yet.

-- 
Robbe

Attachment: signature.ng
Description: PGP signature

Reply to:

References:
- Re: Different roots for each process possible?
  - From: Roland McGrath <frob@debian.org>
- Re: Different roots for each process possible?
  - From: Robert Bihlmeyer <robbe@orcus.priv.at>
- Re: Different roots for each process possible?
  - From: Gordon Matzigkeit <gord@fig.org>

Prev by Date: Re: Hurd cross-compiler confusion (What have I gotten myself into??)
Next by Date: Re: gawk
Previous by thread: Re: Different roots for each process possible?
Next by thread: Re: Different roots for each process possible?
Index(es):
- Date
- Thread