Re: Relax the prohibition of usage fchdir(2) to quit a chroot

To: Manuel Bouyer <bouyer%antioche.eu.org@localhost>
Subject: Re: Relax the prohibition of usage fchdir(2) to quit a chroot
From: Warner Losh <imp%bsdimp.com@localhost>
Date: Mon, 22 Sep 2014 14:50:23 -0600

On Sep 21, 2014, at 9:14 AM, Manuel Bouyer <bouyer%antioche.eu.org@localhost> wrote:

> On Sun, Sep 21, 2014 at 04:28:37AM -0700, Paul Goyette wrote:
>> IMHO, we should not implement this "feature".  We should not introduce ways
>> to avoid deliberate, well-thought-out security mechanisms.
>> 
>> The use-case itself is broken, in my opinion.
> 
> Strongly seconded.

fork() adequately solves this problem for the use case that was put forward. There’s no need to go breaking things.

Warner

Attachment: signature.asc
Description: Message signed with OpenPGP using GPGMail

References:
- Relax the prohibition of usage fchdir(2) to quit a chroot
  - From: Kamil Rytarowski
- Re: Relax the prohibition of usage fchdir(2) to quit a chroot
  - From: Matt Thomas
- Re: Relax the prohibition of usage fchdir(2) to quit a chroot
  - From: Kamil Rytarowski
- Re: Relax the prohibition of usage fchdir(2) to quit a chroot
  - From: Marc Balmer
- Re: Relax the prohibition of usage fchdir(2) to quit a chroot
  - From: Kamil Rytarowski
- Re: Relax the prohibition of usage fchdir(2) to quit a chroot
  - From: Paul Goyette
- Re: Relax the prohibition of usage fchdir(2) to quit a chroot
  - From: Manuel Bouyer

Prev by Date: Re: Relax the prohibition of usage fchdir(2) to quit a chroot
Next by Date: Re: Relax the prohibition of usage fchdir(2) to quit a chroot
Previous by Thread: Re: Relax the prohibition of usage fchdir(2) to quit a chroot
Next by Thread: Re: Relax the prohibition of usage fchdir(2) to quit a chroot
Indexes:

Home | Main Index | Thread Index | Old Index