On Thu, 23 Oct 2003 00:11, Enrico Scholz wrote; > Real world example: in rpm-fake.so, the execve() LD_PRELOAD > wrapper for rpm-scriptlets is called from within a chroot. When I > would trust in the told values, an attacker could return e.g. the > number of a noop syscall, the context-change would succeed > seemingly and the scriptlet runs in ctx > 0.
A good thing that syscall `0' is a no-op. strace(8) reports it as `setup()' -- Sam Vilain, [EMAIL PROTECTED] Real computer scientists work from 5 pm to 9 am because that's the only time they can get the 8 megabytes of main memory they need to edit specs. (Real work starts around 2 am when enough MIPS are free for their dynamic systems.) Real computer scientists find it hard to share 3081s when they are doing 'REAL' work. _______________________________________________ Vserver mailing list [EMAIL PROTECTED] http://www.solucorp.qc.ca/mailman/listinfo/vserver
