Thread: chroot, how ?
View Single Post
Old 22nd April 2019
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 6,837
Default

True. From the chroot(2) syscall man page:
Code:
CAVEATS
     There are ways for a root process to escape from the chroot jail.
     Changes to the directory hierarchy made from outside the chroot jail may
     allow a restricted process to escape, even if it is unprivileged.
     Passing directory file descriptors via recvmsg(2) from outside the chroot
     jail may also allow a process to escape.
Reply With Quote