Re: setting up chroot jail for ssh

To: debian-user@lists.debian.org
Subject: Re: setting up chroot jail for ssh
From: Jon Dowland <jon-dowland@ncl.ac.uk>
Date: Thu, 14 Apr 2005 13:38:27 +0100
Message-id: <[🔎] 425E6443.70706@ncl.ac.uk>
In-reply-to: <[🔎] 425E5704.103@sjki.be>
References: <[🔎] 200504132245.49133.alexcabuz@wanadoo.fr> <[🔎] 425E1BAC.9040800@sjki.be> <[🔎] 200504141038.22971.alexcabuz@wanadoo.fr> <[🔎] 425E5704.103@sjki.be>

Benedict Verheyen wrote:

Have a look at qemu then. Compared to UML that's childsplay. It willhowever run a bit slower.

Apologies if one of the referenced documents already mentions this; buta straight UML is not secure. The entire kernel runs in process-space:if you are worried someone would be nasty then they can jump out of theUML by forcing the UML kernel to do an exec or similar and be running asa local user on your host. You'd need, at the very least, to patch thehost kernel with SKAS.

Reply to:

References:
- setting up chroot jail for ssh
  - From: Alexandru Cabuz <alexcabuz@wanadoo.fr>
- Re: setting up chroot jail for ssh
  - From: Benedict Verheyen <benedict.verheyen@sjki.be>
- Re: setting up chroot jail for ssh
  - From: Alexandru Cabuz <alexcabuz@wanadoo.fr>
- Re: setting up chroot jail for ssh
  - From: Benedict Verheyen <benedict.verheyen@sjki.be>

Prev by Date: Re: Re; How many ISO CD's required
Next by Date: Re: Re; How many ISO CD's required
Previous by thread: Re: setting up chroot jail for ssh
Next by thread: Re: setting up chroot jail for ssh
Index(es):
- Date
- Thread