Displaying 2 results from an estimated 2 matches for "the_root".
Did you mean:
pae_root
1997 May 05
1
Re: Re: Re: Re: Buffer Overflows: A Summary
...you need to
totally redesign the OS with this "virtual machine" in mind. Several research
projects follow such a path (with further expectation also, of course).
[mod: Yes. One "catchall" would be to modify "suser()" to return
(uid==0) && (current->root == THE_ROOT). That would make a uid==0 in a
chrooted environment just another user. Just with a special uid. But
still you would have to review the WHOLE system to be sure that no
holes remain.... --REW]
Stefan
1997 May 08
0
Re: root in a chroot jail (was: Buffer Overflows: A Summary)
...t;
> > From: Stefan Monnier <monnier+/news/lists/linux/security@TEQUILA.SYSTEMSZ.CS.YALE.EDU>
> > Date: 05 May 1997 12:23:05 -0400
>
> > [mod: Yes. One "catchall" would be to modify "suser()" to return
> > (uid==0) && (current->root == THE_ROOT). That would make a uid==0 in a
> > chrooted environment just another user. Just with a special uid. But
> > still you would have to review the WHOLE system to be sure that no
> > holes remain.... --REW]
>
> I suppose this would contribute to a defense in depth. But it does...