chroot and re-mounted dirs

From: Kai Raven (k.raven_at_freenet.de)
Date: 03/09/04

• Next message: tj: "Re: Q: pub key login still asks for password??"
• Previous message: perl coder: "Re: how to re-use existing session?"
• Next in thread: all mail refused: "Re: chroot and re-mounted dirs"
• Reply: all mail refused: "Re: chroot and re-mounted dirs"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 09 Mar 2004 20:57:14 +0100

Hi,

is it a security hole, if i re-mount a directory outside the chroot in a
subdirectory under the chrooted user's home dir, when the dir,
subdirs and files are not owned by the chrooted user and the user has no
write permissions or is it better to copy files under the user's dir?
I'm using openssh+rssh+chroot/sftplogging patch.

Ciao
Kai

-- 
HP: http://kai.iks-jena.de/
Blog: http://rabenhorst.blogg.de/
GPG-Key: 0xD6E995A0
ICQ:146714798 

• Next message: tj: "Re: Q: pub key login still asks for password??"
• Previous message: perl coder: "Re: how to re-use existing session?"
• Next in thread: all mail refused: "Re: chroot and re-mounted dirs"
• Reply: all mail refused: "Re: chroot and re-mounted dirs"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: chroot and re-mounted dirs ... >subdirs and files are not owned by the chrooted user and the user has no ... File access times might be used as a covert channel between programs ... Mounting read-only reduces risk. ... Supposing an attacher gets root inside the chroot - normally that's ... (comp.security.ssh) Re: chrooted sftp with umask 002 ... > can I change the default sftp and ssh umask for a chrooted user ... > TIA ... One of the published patches to sshd, or a chroot ... (comp.security.ssh)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint