Hi, On Mon, 31 Jan 2000, Sebastian Seitz wrote:
On 31-Jan-2000 Emmerich Eggler wrote:
Sebastian Seitz wrote:
Thats crap. Im able to break chroot with >10 lines of code in the sploid.
I'm curious to see these ten or so lines.
take a look at them.. p.e. at: http://www.bpfh.net/simes/computing/chroot-break.html
he uses chroot() and so must have UID 0. this is just one way to break chroot'ed env. w/ having UID 0.
Sebastian Seitz
mail: sebastian@seitz.cc phone: 49-(0)700-27011979, fax: 49-(0)40-43272831 web: http://www.seitz.cc, http://www.uni-humbug.de anything else: http://www.seitz.cc/newsgroups
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
Bye, Thomas -- Thomas Biege, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg E@mail: thomas@suse.de Function: Security Support & Auditing "lynx -source http://www.suse.de/~thomas/thomas.pgp | pgp -fka" Key fingerprint = 09 48 F2 FD 81 F7 E7 98 6D C7 36 F1 96 6A 12 47