How To Find Out If I Am Chrooted ?

Full Version: How To Find Out If I Am Chrooted ?

GovernmentSecurity.org > System Security > Linux & Unix Systems

[_-ViCiOuS-_]

Apr 9 2005, 10:19 PM

hi
how can i find out if i am in a chrooted environment or not ?
and how can i "break out" of a chrooted environment ?

i saw a server of a guy today which has 8 users, and each of them was chrooted in his own environment.
i logged in as one of them, but it looked like the "real root environment"..
the owner of the server allowed me to "play a little bit" with the box

thanx in forward!
.-:/]=-WiSHeS-=[\:-.

KuerbY

Apr 10 2005, 12:34 AM

http://gentoo-wiki.com/HOWTO_chroot_login

nice tutorial to setup chroot login and it works like a charm..

how to find out?
You can look in the /proc dir... in a chroot enviroment there are not all devices
how to break out?
hm if he tried to look it like a real enviroment then he simply copied the files and then its attackable

fulvioo

Apr 10 2005, 12:44 AM

QUOTE

Detecting additional lines of defense: chroot and jails
chroot() was never designed for security, but it is considered to be a necessity when one wants to protect a sensitive server. Detecting that you are in a chroot environment , or even circumventing it, is not really that difficult.

CODE

http://www.securityfocus.com/infocus/1826

If you like the topic, check part 2 as well.

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.


Help - Search - Member List - Calendar Full Version: How To Find Out If I Am Chrooted ? GovernmentSecurity.org > System Security > Linux & Unix Systems [_-ViCiOuS-_] Apr 9 2005, 10:19 PM hi how can i find out if i am in a chrooted environment or not ? and how can i "break out" of a chrooted environment ? i saw a server of a guy today which has 8 users, and each of them was chrooted in his own environment. i logged in as one of them, but it looked like the "real root environment".. the owner of the server allowed me to "play a little bit" with the box thanx in forward! .-:/]=-WiSHeS-=[\:-. KuerbY Apr 10 2005, 12:34 AM http://gentoo-wiki.com/HOWTO_chroot_login nice tutorial to setup chroot login and it works like a charm.. how to find out? You can look in the /proc dir... in a chroot enviroment there are not all devices how to break out? hm if he tried to look it like a real enviroment then he simply copied the files and then its attackable fulvioo Apr 10 2005, 12:44 AM QUOTE Detecting additional lines of defense: chroot and jails chroot() was never designed for security, but it is considered to be a necessity when one wants to protect a sensitive server. Detecting that you are in a chroot environment , or even circumventing it, is not really that difficult. CODE http://www.securityfocus.com/infocus/1826 If you like the topic, check part 2 as well. This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.