Re: chroot()ing a user's login

To: Ben Collins <bcollins@debian.org>
Cc: debian-user@lists.debian.org
Subject: Re: chroot()ing a user's login
From: Robert Varga <robi@piros.zold.net>
Date: Mon, 13 Dec 1999 16:54:27 +0100 (CET)
Message-id: <[🔎] Pine.LNX.3.96.991213165119.24058A-100000@piros.zold.net>
In-reply-to: <[🔎] 19991212121536.J1441@lappy.djj.state.va.us>

On Sun, 12 Dec 1999, Ben Collins wrote:
> 
> 2) The shell must be available in the chrooted env (as well as all needed
> bianries).
> 
> So for this to work, you must have a complete working filesystem in each
> home directory (/home/foo/dev /home/foo/bin /home/foo/usr/bin /home/foo/etc
> ...).
> 
> This is not usually what you want for normal users (I've pondered doing
> this for the auto builder, but haven't gotten around to it yet).

Can this be carried out by copying the necessary binaries to somewhere in
the home filesystem and providing hardlinks for the /usr, /etc, /...
directories from each user's homedir?

This would greatly reduce the amount of problem a hacker can cause, does
it not?

Robert Varga

Reply to:

References:
- Re: chroot()ing a user's login
  - From: Ben Collins <bcollins@debian.org>

Prev by Date: ssh pam
Next by Date: Re: Netscape time (was: Netscape time == GMT (UTC)
Previous by thread: Re: chroot()ing a user's login
Next by thread: Re: chroot()ing a user's login
Index(es):
- Date
- Thread