RE: chroot, su and sudo

To: <debian-security@lists.debian.org>
Subject: RE: chroot, su and sudo
From: "Mario Ohnewald" <mario.ohnewald@gmx.de>
Date: Mon, 16 Jun 2003 10:54:54 +0200
Message-id: <[🔎] KCEDJBGKMKIFFMDGHANOKECJECAA.mario.ohnewald@gmx.de>
In-reply-to: <[🔎] 20030616084604.GB1253@darwin.crans.org>

Hi,

>-----Original Message-----
>From: Vincent Hanquez [mailto:tab@tuxfamily.org]
>Sent: Monday, June 16, 2003 10:46 AM
>To: Mario Ohnewald
>Cc: debian-security@lists.debian.org
>Subject: Re: chroot, su and sudo
>
>
>On Mon, Jun 16, 2003 at 10:22:49AM +0200, Mario Ohnewald wrote:
>> Hello!
>> I want to chroot a application/gameserver.
>>
>> What is the better/securest way?
>> 1.) "Chroot /path" and then do a "su -s /bin/sh user -c  start.sh"
>> or
>> 2.) "su -s /bin/sh user" and then do the "chroot /path" as
>normal user and
>> execute the "start.sh" in the chroot?
>>
>> Solution 2 does not need a root shell at all, why i think it is a little
>> more secure.
>> What do you think? WHat do u recommend? How would do solve this?
>
>You can't chroot as normal user. So solution 1.

Not even with sudo?


Cheers, Mario

Reply to:

Follow-Ups:
- Re: chroot, su and sudo
  - From: Vincent Hanquez <tab@tuxfamily.org>

References:
- Re: chroot, su and sudo
  - From: Vincent Hanquez <tab@tuxfamily.org>

Prev by Date: Re: Someone scanned my ssh daemon
Next by Date: Re: chroot, su and sudo
Previous by thread: Re: chroot, su and sudo
Next by thread: Re: chroot, su and sudo
Index(es):
- Date
- Thread