[Mono-list] Re: ****SPAM(1)**** RE: Re: Running mod-mono-server in
a chroot jail
Robert Jordan
robertj at gmx.net
Mon Nov 28 15:50:34 EST 2005
Jesse,
> You are correct, I do not have the real proc filesystem mounted into the
> jail. I was thinking I could go ahead and mount this using something like:
>
> mount --bind /proc -o ro,nosuid /home/jail/proc
mount -n -t proc proc /home/jail/proc
> Does this open up and security issues etc? I'm not very familiar with the
> proc filesystem.
There were some security issues (chroot escapes) with chroot
and procfs, but I cannot remember which linux kernel version
was affected (2.2 or 2.4?).
Robert
More information about the Mono-list
mailing list