[ Date Index ][
Thread Index ]
[ <= Previous by date /
thread ]
[ Next by date /
thread => ]
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tuesday 25 June 2002 12:10 pm, Neil Stone wrote:
So whats the point in upgrading then ??
3.3 will chroot to the 'ssh' user while doing what it does - thus if it is exploited, you'll end up with someone in a chroot as user ssh, not root... though this isn't 100% secure (as any access on the system is *bad*), chroot jails can be broken out of - take a look at the grsecurity kernel patches to *help* stop this - though avoid the stack smashing protections it offers with 2.4.18 as it causes no end of kernel wibbles. ~ Theo - -- Theo Zourzouvillys http://zozo.org.uk/ You will be given a post of trust and responsibility. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE9GFGd448CrwpTn6YRAoCYAKCUaxqYxv1Bx97v6J1ZL51OOZ0FTACfQpPr sRNbGqnLBHu92JsEWMIjQ+U= =KhVx -----END PGP SIGNATURE----- -- The Mailing List for the Devon & Cornwall LUG Mail majordomo@xxxxxxxxxxxx with "unsubscribe list" in the message body to unsubscribe.