[Bug 3715] safely_chroot is a little too restrictive: noexec or nosuid should be enough

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Wed Jul 31 13:05:43 AEST 2024


https://bugzilla.mindrot.org/show_bug.cgi?id=3715

--- Comment #4 from Damien Miller <djm at mindrot.org> ---
(In reply to Joshua Hudson from comment #2)
> It may have been; but I jumped back a few versions and found the
> original state was don't check permissions on the chroot directory.
> 
> I wonder if that was some other downstream distributor unbreaking
> somebody else with a very similar setup.

Redhat turned off the safely_chroot check entirely and gave themselves
this https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2009-2904

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list