tech-kern archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

re: fexecve

To: christos%astron.com@localhost (Christos Zoulas)
Subject: re: fexecve
From: matthew green <mrg%eterna.com.au@localhost>
Date: Mon, 09 Sep 2019 09:14:41 +1000

not really commenting on the proposal itself, but ..

> Let us not forget that you need a binary inside the chroot that can
> call fexecve() on a file descriptor or the ability to build such a
> binary.

this is only one buffer overflow away...  ie, strength in
layers would imply you should not rely this.


.mrg.

References:
- Re: fexecve
  - From: Christos Zoulas

Prev by Date: Re: fexecve
Next by Date: more fexecve questions
Previous by Thread: Re: fexecve
Next by Thread: Re: fexecve
Indexes:

Home | Main Index | Thread Index | Old Index