-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 31 Jul 2003 23:37:13 +0200, Moshe Shemesh <[EMAIL PROTECTED]> wrote: > > Doing chmod +s /uusr/sbin/chroot will simply break the security on your > system. For example (as a non root user) do: > chroot / cat /etc/shadow. > > Getting a root shell is left as an exersice to the reader.
You are right. I checked (before I sent my mail) `id' under chroot but I saw that the uid & gid are saved but I failed to see that the effective user and group (euid & egid) are both 0 (root). So it seems a pity there is no "user chroot" that restores the user uid & gid after changing the "root" but before calling the command. Ehud. - -- Ehud Karni Tel: +972-3-7966-561 /"\ Mivtach - Simon Fax: +972-3-7966-667 \ / ASCII Ribbon Campaign Insurance agencies (USA) voice mail and X Against HTML Mail http://www.mvs.co.il FAX: 1-815-5509341 / \ mailto:[EMAIL PROTECTED] Better Safe Than Sorry -----BEGIN PGP SIGNATURE----- Comment: use http://www.keyserver.net/ to get my key (and others) iD8DBQE/KZCtLFvTvpjqOY0RAvQyAJwLxuteokih63NWhGAWnljnmSo2vQCeMd7h tGpYrhR7+LxEs8xT76EA+bg= =vbkS -----END PGP SIGNATURE----- ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
