Related Entries

Amazon.com security request fraud
Blaster laster
Ironic, is it not?
Another buffer overrun vulnerability
What's New in Windows 2003!

« A little state moves on
» Linkfest 2003.02.01

Securing Systems with chroot

Short and sweet article on using chroot jail.

ONLamp.com: “Chrooting is a verb named after the chroot(2) system call, which is used to change the root of the filesystem as seen by the calling process.”

When a process requests to chroot to a given directory, any future system calls issued by the process will see that directory as the filesystem root. It becomes impossible to access files and binaries outside the tree rooted on the new root directory. This environment is known as a chroot jail.

I had only a vague idea about chroot jail. This article is a one page explanation of what exactly it does. And how to do it.

It also mentions some common overflow flaws and exploitation modes. And a bonus link.

//-->