28.12.2011 02:03, Dimitry Andric wrote:
.if (empty(.CURDIR:N*/usr/src/*) || empty(.CURDIR:N*/usr/obj/*))&&
!defined(NOCCACHE)
The problem is this test, it doesn't return true when you are exactly in
/usr/src. The result is that clang doesn't get built in the cross-tools
stage, and /usr/bin/clan
Hello,
Today I've managed to escape from a jail by accident and ended up with
root access to the host's filesystem.
Here's what I did:
* Using ezjail for managing my jails
* Verified in FreeBSD 9.0-BETA3 and 9.0-RC3
* This works only when I use sudo, and cannot reproduce if I execute
everythi
On 28. Dec 2011, at 08:58 , Marin Atanasov Nikolov wrote:
> Hello,
>
> Today I've managed to escape from a jail by accident and ended up with
> root access to the host's filesystem.
This has been discussed to lengths within the last year (I think it was).
See the updated man page:
http://svnweb
On 12/27/11 10:22 PM, Jeremy Chadwick wrote:
> On Tue, Dec 27, 2011 at 07:46:52PM +0100, Damien Fleuriot wrote:
>> Hello list,
>>
>> Yesterday and today, I've been busy either patching boxes for the BIND
>> advisory that we received on the 23rd (when they were running 8.1 or
>> 8.2-RELEASE), or u
In message
, Marin Atanasov Nikolov writes:
>Then from the host machine I've moved this folder to the cwd.
>[...]
>Not sure if it is sudo or jail issue, and would be nice if someone
>with more experience can check this up :)
That's an "error-42" issue.
--
Poul-Henning Kamp | UNIX since Z
Yeah, I got that! Thanks :)
And that was exactly what I wanted, a list of ports I have installed
depending on gconf.
Quoting Christopher Hilton :
On Dec 21, 2011, at 10:50 AM, Bartosz Fabianowski wrote:
Once you have a port installed, "pkg_info -R gconf\*" will tell you.
- Bartosz
Just
On 12/28/11 10:46 AM, Damien Fleuriot wrote:
>
>
> On 12/27/11 10:22 PM, Jeremy Chadwick wrote:
>> On Tue, Dec 27, 2011 at 07:46:52PM +0100, Damien Fleuriot wrote:
>>> Hello list,
>>>
>>> Yesterday and today, I've been busy either patching boxes for the BIND
>>> advisory that we received on the
On 27 December 2011 22:46, Damien Fleuriot wrote:
> Hello list,
>
>
>
> Yesterday and today, I've been busy either patching boxes for the BIND
> advisory that we received on the 23rd (when they were running 8.1 or
> 8.2-RELEASE), or upgrading them (when running 8.0-RELEASE).
>
>
> Today I've come
On 28 December 2011 14:45, Damien Fleuriot wrote:
>
>
> On 12/28/11 10:46 AM, Damien Fleuriot wrote:
>>
>>
>> On 12/27/11 10:22 PM, Jeremy Chadwick wrote:
>>> On Tue, Dec 27, 2011 at 07:46:52PM +0100, Damien Fleuriot wrote:
Hello list,
Yesterday and today, I've been busy either patc
On 12/28/11 11:50 AM, Sergey Kandaurov wrote:
> On 27 December 2011 22:46, Damien Fleuriot wrote:
>> Hello list,
>>
>>
>>
>> Yesterday and today, I've been busy either patching boxes for the BIND
>> advisory that we received on the 23rd (when they were running 8.1 or
>> 8.2-RELEASE), or upgradin
On 28 December 2011 15:11, Damien Fleuriot wrote:
>
>
> On 12/28/11 11:50 AM, Sergey Kandaurov wrote:
>> On 27 December 2011 22:46, Damien Fleuriot wrote:
>>> Hello list,
>>>
>>>
>>>
>>> Yesterday and today, I've been busy either patching boxes for the BIND
>>> advisory that we received on the 23
On Wed, Dec 28, 2011 at 11:45:37AM +0100, Damien Fleuriot wrote:
> On 12/28/11 10:46 AM, Damien Fleuriot wrote:
> > On 12/27/11 10:22 PM, Jeremy Chadwick wrote:
> >> On Tue, Dec 27, 2011 at 07:46:52PM +0100, Damien Fleuriot wrote:
> >
> > The "upgrade" that troubles me with these stuck processes i
On 12/28/11 1:38 PM, Jeremy Chadwick wrote:
> On Wed, Dec 28, 2011 at 11:45:37AM +0100, Damien Fleuriot wrote:
>> On 12/28/11 10:46 AM, Damien Fleuriot wrote:
>>> On 12/27/11 10:22 PM, Jeremy Chadwick wrote:
On Tue, Dec 27, 2011 at 07:46:52PM +0100, Damien Fleuriot wrote:
>>>
>>> The "upgrad
On 12/28/11 12:37 PM, Sergey Kandaurov wrote:
> On 28 December 2011 15:11, Damien Fleuriot wrote:
>>
>>
>> On 12/28/11 11:50 AM, Sergey Kandaurov wrote:
>>> On 27 December 2011 22:46, Damien Fleuriot wrote:
Hello list,
Yesterday and today, I've been busy either patching
On 12/28/11 3:35 PM, Damien Fleuriot wrote:
>
>
> On 12/28/11 12:37 PM, Sergey Kandaurov wrote:
>> On 28 December 2011 15:11, Damien Fleuriot wrote:
>>>
>>>
>>> On 12/28/11 11:50 AM, Sergey Kandaurov wrote:
On 27 December 2011 22:46, Damien Fleuriot wrote:
> Hello list,
>
>
>>
On 12/28/11 12:58 AM, Marin Atanasov Nikolov wrote:
Hello,
Today I've managed to escape from a jail by accident and ended up with
root access to the host's filesystem.
Here's what I did:
* Using ezjail for managing my jails
* Verified in FreeBSD 9.0-BETA3 and 9.0-RC3
* This works only wh
On 12/28/2011 02:58 AM, Marin Atanasov Nikolov wrote:
Hello,
Today I've managed to escape from a jail by accident and ended up with
root access to the host's filesystem.
Here's what I did:
* Using ezjail for managing my jails
* Verified in FreeBSD 9.0-BETA3 and 9.0-RC3
* This works only
Stephen Montgomery-Smith writes:
> I agree with the poster that the jail didn't really escape, but was
> "sprung from the outside."
Easily prevented by making sure that every jail's root directory is
unreachable to unprivileged users. Say your jails are in /jail/foo,
/jail/bar and /jail/baz; if
18 matches
Mail list logo
