Re: kern/54947: chroot mount file systems leak the actual path in superblock

To: gnats-bugs%netbsd.org@localhost
Subject: Re: kern/54947: chroot mount file systems leak the actual path in superblock
From: Christos Zoulas <christos%zoulas.com@localhost>
Date: Sat, 8 Feb 2020 11:27:40 -0500

1. There is nothing to be done about it; the part is recorded inside the superblock.
2. One should not be making device nodes with access to physical devices in the chroot.
    Getting the path from the superblock is the least of the concerns if you give root access
    inside a chroot...
3. This is purely an information leak. The same can happen if you plug in a usb fob that
    has a filesystem on it, and the information you get on it is not very useful.

christos

Attachment: signature.asc
Description: Message signed with OpenPGP

References:
- kern/54947: chroot mount file systems leak the actual path in superblock
  - From: kardel

Prev by Date: Re: port-macppc/54920 (9.0_RC1 macppc GENERIC kernel locks up)
Next by Date: Re: kern/54947: chroot mount file systems leak the actual path in superblock
Previous by Thread: kern/54947: chroot mount file systems leak the actual path in superblock
Next by Thread: Re: kern/54947: chroot mount file systems leak the actual path in superblock
Indexes:

Home | Main Index | Thread Index | Old Index