Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)

From: Jamie Landeg Jones <jamie@xxxxxxxxxxxxxx>
Date: Tue, 10 May 2011 13:18:44 +0100

Do you know if there is a way that chmod on / from within the jail could
be prevented easily without breaking something ? Maybe not failing but
falling though and return 0 for any operation with the sole argument of /.

Enforcing 700 on the jail root?

Whilst I was wrong on chmod 700 on (say) /usr/jails it is still the case
that the root directory of the jail itself (/usr/jail/jailname) has to
be 755 for non-root processeses within the jail to access the filesystem!

cheers,
Jamie
_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"

Follow-Ups:
- Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
  - From: Jason Hellenthal

References:
- Re: Rooting FreeBSD , Privilege Escalation using Jails (Pétur)
  - From: Mark Felder
- Re: Rooting FreeBSD , Privilege Escalation using Jails (Pétur)
  - From: Chris Rees
- Re: Rooting FreeBSD , Privilege Escalation using Jails (Pï¿½tur)
  - From: Jamie Landeg Jones
- Re: Rooting FreeBSD , Privilege Escalation using Jails (Pï¿½tur)
  - From: Edho P Arief
- Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
  - From: Jason Hellenthal
- Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
  - From: Chris Rees
- Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
  - From: Jason Hellenthal
- Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
  - From: Dag-Erling Smørgrav
- Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
  - From: Chris Rees
- Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
  - From: Dag-Erling Smørgrav
- Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
  - From: Jason Hellenthal

Prev by Date: Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
Next by Date: Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
Previous by thread: Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
Next by thread: Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
Index(es):
- Date
- Thread

Relevant Pages

Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
... Enforcing 700 on the jail root? ... What I was thinking of is enforcing from within the jail that all system ... directories access modes should be passed silently when the argument to ... the command is operating on the root directory. ...
(FreeBSD-Security)
Wireless IP leads to arrest..
... A man in WNY was arrested and sentenced to a year in jail over an email with ... the sole piece of evidence being an IP address? ...
(Security-Basics)
Re: Big Brother Want to Sniff *Your* Breath.
... are they planning on enforcing this law? ... Jail the ones who drive without a licence. ...
(rec.arts.sf.fandom)
Re: Directory quota enforcement on jails
... >> How do I limit the disk usage of each jail? ... >> Creating one partition each for each jail seems to be an option. ... Since the jail root is ...
(comp.unix.bsd.freebsd.misc)
Re: Rooting FreeBSD , Privilege Escalation using Jails (P??????tur)
... parent of a jail root is 0700. ... If you do that then you can't us the jail with a non-root jailed user, ... very unprivileged access. ...
(FreeBSD-Security)