Bugtraq: Re: Buffer Overflows: A Summary

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Buffer Overflows: A Summary

From: tqbf () enteract com (Thomas H. Ptacek)
Date: Fri, 2 May 1997 12:33:00 -0500

Another alternative that has the advantage of already existing and being
relatively easy to use is the chroot() system call.  For example, named would
be a much less attractive target it if chroot()ed to /etc/namedb (or whatever)
as soon as it knew where its startup directory was.  Then all named could do is
mangle your name service files.


On almost all Unix operating systems, having superuser access in a
chroot() jail is still dangerous. In some recent revisions of 4.4BSD
operating systems, root can trivially escape chroot(), as well.

----------------
Thomas Ptacek at EnterAct, L.L.C., Chicago, IL [tqbf () enteract com]
----------------
"If you're so special, why aren't you dead?"

By Date By Thread

Current thread:

Re: A bug in Elm, (continued)
- Re: Buffer Overflows: A Summary Thomas H. Ptacek (May 02)
  - Comments on NT user list exploit webroot (May 05)
  - Re: Buffer Overflows: A Summary Adam Shostack (May 05)
    - Re: Buffer Overflows: A Summary Eilon Gishri (May 06)
    - Administratrivia Aleph One (May 06)
  - SGI Security Advisory 19970501-01-A - Vulnerability in webdist.cgi SGI Security Coordinator (May 06)