From best-of-security-d-request@suburbia.net Tue Aug 27 23:02:07 1996 Received: (list@localhost) by suburbia.net (8.7.4/Proff-950810) id XAA27495 for best-of-security@suburbia.net; Tue, 27 Aug 1996 23:02:06 +1000 Received: from bart.cibi.it (bos@bart.cibi.it [194.133.0.132]) by suburbia.net (8.7.4/Proff-950810) with ESMTP id XAA27455 for ; Tue, 27 Aug 1996 23:00:59 +1000 Received: from localhost (bos@localhost) by bart.cibi.it (8.7.5/8.6.9) with SMTP id PAA30679 for ; Tue, 27 Aug 1996 15:03:54 +0100 Date: Tue, 27 Aug 1996 15:03:54 +0100 (GMT+0100) From: Ivan Buttinoni - BOS Reply-To: Ivan Buttinoni - BOS To: best-of-security-d@suburbia.net Subject: Linux chmod (1) security hole Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Environment: Linux 2.0.13 libc.so.5 => libc.so.5.2.18 gcc version 2.7.2 Action: bash# cd / bash# chroot /restricted/area /bin/bash shell-init: could not get current directory: getwd: cannot access parent directories Problem: After 'Action', I'm not in "/restricted/area", I'm in the real "/"! Ivan | Ivan Buttinoni - e-mail: ivan@cibi.it - Tel. + 39 - 338 - 6134099 | |Via G. Carducci, 17 Albino (BG) 24021 ITALY WWW: http://www.cibi.it/ |