This is the mail archive of the
cygwin@sourceware.cygnus.com
mailing list for the Cygwin project.
Re: Simple chroot using chdrive
- To: garbanzo at hooked dot net
- Subject: Re: Simple chroot using chdrive
- From: dahms at ifk20 dot mach dot uni-karlsruhe dot de
- Date: Fri, 28 Nov 1997 01:46:55 +0100 (MET)
- CC: gnu-win32 at cygnus dot com, dahms at ifk20 dot mach dot uni-karlsruhe dot de
Hi Alex, you wrote:
: What exactly does chdrive do? Chroot, changes the location of / to
: whatever _directory_ you choose, which could be on any drive in theory.
Chdrive simply sets the drive letter, which is reversible.
It does not restrict access since you can always specify a filename
including a drive letter (or UNC equivalent).
Chroot under unix is a major security issue, since it is *not* reversible,
and prevents access to any file or device above given directory for the
process once called and all it's newly forked childs, even for root,
in any case e.g. loading system shared libraries.
I guess almost every public FTP server uses this feature!
Bye, Heribert (dahms@ifk20.mach.uni-karlsruhe.de)
-
For help on using this list (especially unsubscribing), send a message to
"gnu-win32-request@cygnus.com" with one line of text: "help".