From: Heiko Z. <he...@zu...> - 2012-06-19 13:08:41
|
Dean, I'll add it to my todo list to replace the symlink with a directory and use "mount --bind". It may be a week or two before I get a chance to work on it Heiko Quoting Dean Takemori <de...@ha...>: >> Date: Mon, 18 Jun 2012 07:31:59 -0500 >> From: Heiko Zuerker <he...@zu...> >> Subject: Re: [Devil-Linux-discuss] chroot jailed users >> To: dev...@li... >> >> Did you try the mount command? >> I was able to successfully mount over the symlink and saw the correct >> contents of the folder. >> >> If this testing works, then I'll get rid of the symlink and use "mount >> --bind" instead. We're using this now for a couple of other >> directories, but seems like I forgot to change it for /jail. > >> From a fresh boot of devil-linux-1.6.1-i686_bootcd.iso with no config; > > Devil login: root > Password: > root@Devil:~ # ls -l /jail > lrwxrwxrwx 1 root root 9 May 8 04:33 /jail -> /shm/jail > root@Devil:~ # mount -n --bind /shm/jail /jail > root@Devil:~ # mkdir -v /jail/home > mkdir: created directory '/jail/home' > root@Devil:~ # jk_init /jail/home basicshell > ERROR: /jail is a symlink, please point to the real directory > > ERROR: jail directory /jail/home is not safe > <snip> > > > -dean takemori > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > Devil-linux-discuss mailing list > Dev...@li... > https://lists.sourceforge.net/lists/listinfo/devil-linux-discuss -- Regards Heiko Zuerker http://www.devil-linux.org |