Xref: utzoo news.admin:4124 news.sysadmin:1749 comp.mail.uucp:2403 Path: utzoo!utgpu!watmath!clyde!att!osu-cis!tut.cis.ohio-state.edu!mailrus!ames!vsi1!apple!epimass!jbuck From: jbuck@epimass.EPI.COM (Joe Buck) Newsgroups: news.admin,news.sysadmin,comp.mail.uucp Subject: Re: Dangerous hole in Usenet! Message-ID: <2686@epimass.EPI.COM> Date: 30 Nov 88 17:53:43 GMT References: <1971@van-bc.UUCP> <572@comdesign.CDI.COM> <5517@medusa.cs.purdue.edu> <561@redsox.UUCP> <215@twwells.uucp> <155@ecicrl.UUCP> <2683@epimass.EPI.COM>Reply-To: jbuck@epimass.EPI.COM (Joe Buck) Organization: Entropic Processing, Inc., Cupertino, CA Lines: 18 In article vixie@decwrl.dec.com (Paul A Vixie) writes: ># You are now root, and you can do another chroot to gain access to the ># whole system. > >Chroot is not reversable. Once you're down, you can't see what was above >anymore and therefore there's no way to tell chroot where you'd like to go. Another opportunity to be wrong, and I took it. :-) Blush. OK, see the articles by Theodore T'so or John Owens. John's method is more general; you can always make a setuid root shell. -- - Joe Buck jbuck@epimass.epi.com, or uunet!epimass.epi.com!jbuck, or jbuck%epimass.epi.com@uunet.uu.net for old Arpa sites