Mail Archives: cygwin/1997/11/27/19:02:50

delorie.com/archives/browse.cgi

search

Mail Archives: cygwin/1997/11/27/19:02:50

From: dahms AT ifk20 DOT mach DOT uni-karlsruhe DOT de

Subject: Re: Simple chroot using chdrive

27 Nov 1997 19:02:50 -0800 :

Message-ID: <009BDF27.F876B740.29068.cygnus.gnu-win32@ifk20.mach.uni-karlsruhe.de>

To: garbanzo AT hooked DOT net

Cc: gnu-win32 AT cygnus DOT com, dahms AT ifk20 DOT mach DOT uni-karlsruhe DOT de

Hi Alex, you wrote:

: What exactly does chdrive do?  Chroot, changes the location of / to
: whatever _directory_ you choose, which could be on any drive in theory.

Chdrive simply sets the drive letter, which is reversible.
It does not restrict access since you can always specify a filename
including a drive letter (or UNC equivalent).

Chroot under unix is a major security issue, since it is *not* reversible,
and prevents access to any file or device above given directory for the
process once called and all it's newly forked childs, even for root,
in any case e.g. loading system shared libraries.
I guess almost every public FTP server uses this feature!


Bye, Heribert (dahms AT ifk20 DOT mach DOT uni-karlsruhe DOT de)
-
For help on using this list (especially unsubscribing), send a message to
"gnu-win32-request AT cygnus DOT com" with one line of text: "help".

- Raw text -

webmaster	delorie software privacy
Copyright © 2019 by DJ Delorie	Updated Jul 2019

From:	dahms AT ifk20 DOT mach DOT uni-karlsruhe DOT de
Subject:	Re: Simple chroot using chdrive
27 Nov 1997 19:02:50 -0800 :
Message-ID:	<009BDF27.F876B740.29068.cygnus.gnu-win32@ifk20.mach.uni-karlsruhe.de>
To:	garbanzo AT hooked DOT net
Cc:	gnu-win32 AT cygnus DOT com, dahms AT ifk20 DOT mach DOT uni-karlsruhe DOT de