On Fri, Aug 04, 2000 at 02:47:45PM -0400, Justin Wells wrote:
> I have a wrapper which does a chroot followed by a setuid/setgid and then
> runs CVS. Then I had to patch CVS so that it wouldn't try the setuid/segid
> on itself. Otherwise there is no guarantee CVS will drop root permissions
> and as root it's trivially easy to break out of a chroot.
Also the wrapper gives an attacker more to play with because the CVS binary
itself is in the chrooted area so in theory they can replace it with their
own binary, which would get run as root....
Justin
