Received: with LISTAR (v1.0.0; list gopher); Tue, 22 Jan 2002 09:35:27 -0500 (EST) Return-Path: Delivered-To: gopher@complete.org Received: from mothra.dyndns.org (pool-141-152-10-6.rich.east.verizon.net [141.152.10.6]) by pi.glockenspiel.complete.org (Postfix) with ESMTP id 32D9C3B80B for ; Tue, 22 Jan 2002 09:35:27 -0500 (EST) Received: from x by mothra.dyndns.org with local (Exim 3.33 #1 (Debian)) id 16T1nL-0002CL-00 for ; Tue, 22 Jan 2002 09:21:03 -0500 Date: Tue, 22 Jan 2002 09:21:03 -0500 From: David Allen To: gopher@complete.org Subject: [gopher] Re: Security issues in Gopher? Message-ID: <20020122092103.A8440@mothra.dyndns.org> References: <20020122141908.90821.qmail@ingwaz.pair.com> Mime-Version: 1.0 Content-type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <20020122141908.90821.qmail@ingwaz.pair.com>; from rhahn@tenletters.com on Tue, Jan 22, 2002 at 02:19:08PM -0000 Content-Transfer-Encoding: 8bit X-archive-position: 382 X-listar-version: Listar v1.0.0 Sender: gopher-bounce@complete.org Errors-to: gopher-bounce@complete.org X-original-sender: mda@idatar.com Precedence: bulk Reply-to: gopher@complete.org List-help: List-unsubscribe: List-software: Listar version 1.0.0 X-List-ID: Gopher List-subscribe: List-owner: List-post: List-archive: X-list: gopher On Tue, Jan 22, 2002 at 02:19:08PM -0000, Robert Hahn wrote: > ooo... that's *cool*. > > ok, so, building on your example, what if I created a soft link to > ls from within /home/anstouh? would that be enough to work, or do I > have to physically copy the binary to within that directory? Links can't "escape" the chroot jail. If you chroot to /var/something, and that directory contains a link to /home/anstouh, it won't be accessible. -- David Allen http://opop.nols.com/