| View previous topic :: View next topic |
| Author |
Message |
loux.thefuture
Tux's lil' helper
Joined: 15 Nov 2005
Posts: 135
|
 Posted: Wed Jun 21, 2006 12:49 pm Post subject: hardened-sources + chroot |
 |
|
Hello,
i'm building a server with the hardened-sources and pax and USE="hardened pic" and profile hardened
on it i have a chroot xorg server which is not compile with hardened at all,
is it a security hole, could my user on the xorg server access the non chroot system ?
thanks
loux
_________________
"So long and thanks for all the fishs !" |
|
| Back to top |
|
 |
richard.scott
Veteran
Joined: 19 May 2003
Posts: 1497
Location: Oxfordshire, UK
|
| Posted: Sat Sep 09, 2006 3:40 pm Post subject: |
|
|
From what I understand the hardened profile (and/or) kernel sources don't work with xorg at all!  |
|
| Back to top |
|
|
Sachankara
l33t
Joined: 11 Jun 2004
Posts: 696
Location: Stockholm, Sweden
|
| Posted: Sat Sep 09, 2006 6:22 pm Post subject: Re: hardened-sources + chroot |
|
|
| loux.thefuture wrote: | Hello,
i'm building a server with the hardened-sources and pax and USE="hardened pic" and profile hardened
on it i have a chroot xorg server which is not compile with hardened at all,
is it a security hole, could my user on the xorg server access the non chroot system ?
thanks
loux |
If you've put Xorg in a chroot and enabled all chroot restrictions within the kernel, it should be rather safe for the "outside" environment, if that is what you mean?
_________________
Gentoo Hardened Linux 2.6.21 + svorak (Swedish dvorak) |
|
| Back to top |
|
|
|
Networking & Security
