Xref: utzoo news.admin:4124 news.sysadmin:1749 comp.mail.uucp:2403
Path: utzoo!utgpu!watmath!clyde!att!osu-cis!tut.cis.ohio-state.edu!mailrus!ames!vsi1!apple!epimass!jbuck
From: jbuck@epimass.EPI.COM (Joe Buck)
Newsgroups: news.admin,news.sysadmin,comp.mail.uucp
Subject: Re: Dangerous hole in Usenet!
Message-ID: <2686@epimass.EPI.COM>
Date: 30 Nov 88 17:53:43 GMT
References: <1971@van-bc.UUCP> <572@comdesign.CDI.COM> <5517@medusa.cs.purdue.edu> <561@redsox.UUCP> <215@twwells.uucp> <155@ecicrl.UUCP> <2683@epimass.EPI.COM> 
Reply-To: jbuck@epimass.EPI.COM (Joe Buck)
Organization: Entropic Processing, Inc., Cupertino, CA
Lines: 18

In article  vixie@decwrl.dec.com (Paul A Vixie) writes:
># You are now root, and you can do another chroot to gain access to the
># whole system.
>
>Chroot is not reversable.  Once you're down, you can't see what was above
>anymore and therefore there's no way to tell chroot where you'd like to go.

Another opportunity to be wrong, and I took it. :-)  Blush.

OK, see the articles by Theodore T'so or John Owens.  John's method is
more general; you can always make a setuid root shell.


-- 
- Joe Buck	jbuck@epimass.epi.com, or uunet!epimass.epi.com!jbuck,
		or jbuck%epimass.epi.com@uunet.uu.net for old Arpa sites