jailme makes it possible for non-root users to do the equivalent of jexec. It installs setuid and verifies that the username/uid on the host system match that of the jail before allowing the user access. It then changes the user's environment within the jail to that of the requested user. http://people.collaborativefusion.com/~wmoran/code/jailme.html Fix: IMPORTANT: This message contains confidential information and is intended only for the individual named. If the reader of this message is not an intended recipient (or the individual responsible for the delivery of this message to an intended recipient), please be advised that any re-use, dissemination, distribution or copying of this message is prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.--o3DO0WfVic3Z6um34PnyJ6GGuQtzJ399YPmf5Vuhxjv3ineC Content-Type: text/plain; name="jailme.shar" Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename="jailme.shar" # This is a shell archive. Save it in a file, remove anything before # this line, and then unpack it by entering "sh file". Note, it may # create directories; files and directories will be owned by you and # have default permissions. # # This archive contains: # # /usr/ports/sysutils/jailme # /usr/ports/sysutils/jailme/Makefile # /usr/ports/sysutils/jailme/pkg-descr # /usr/ports/sysutils/jailme/distinfo # echo c - /usr/ports/sysutils/jailme mkdir -p /usr/ports/sysutils/jailme > /dev/null 2>&1 echo x - /usr/ports/sysutils/jailme/Makefile sed 's/^X//' >/usr/ports/sysutils/jailme/Makefile << 'END-of-/usr/ports/sysutils/jailme/Makefile' X# New ports collection makefile for: jailme X# Date created: 2 January 2007 X# Whom: wmoran X# X# $FreeBSD$ X# X XPORTNAME= jailme XPORTVERSION= 0.1 XCATEGORIES= sysutils XMASTER_SITES= http://people.collaborativefusion.com/~wmoran/code/jailme/ X XMAINTAINER= wmoran@collaborativefusion.com XCOMMENT= A setuid version of jexec to allow normal users access to jails X XPLIST_FILES= sbin/jailme X XUSE_BZIP2= yes X X.include <bsd.port.mk> END-of-/usr/ports/sysutils/jailme/Makefile echo x - /usr/ports/sysutils/jailme/pkg-descr sed 's/^X//' >/usr/ports/sysutils/jailme/pkg-descr << 'END-of-/usr/ports/sysutils/jailme/pkg-descr' Xjailme is a modified version of FreeBSD's jexec. X XThis version is installed setuid and does some sanity checking Xto ensure the username and UID match between the jail and the Xhost system. X XWWW: http://people.collaborativefusion.com/~wmoran/code/jailme.html END-of-/usr/ports/sysutils/jailme/pkg-descr echo x - /usr/ports/sysutils/jailme/distinfo sed 's/^X//' >/usr/ports/sysutils/jailme/distinfo << 'END-of-/usr/ports/sysutils/jailme/distinfo' XMD5 (jailme-0.1.tar.bz2) = 72eda7549114316849eb8b2368e53335 XSHA256 (jailme-0.1.tar.bz2) = 55f9b2a987303361a31526764d8aa70e7bfd0b00b7385ecc6a7b5598c8d66ea6 XSIZE (jailme-0.1.tar.bz2) = 1791 END-of-/usr/ports/sysutils/jailme/distinfo exit
Responsible Changed From-To: freebsd-ports-bugs->miwi I'll take it.
State Changed From-To: open->closed New port added. Thanks!
miwi 2007-01-03 23:21:11 UTC FreeBSD ports repository Modified files: sysutils Makefile Added files: sysutils/jailme Makefile distinfo pkg-descr Log: jailme is a modified version of FreeBSD's jexec. This version is installed setuid and does some sanity checking to ensure the username and UID match between the jail and the host system. WWW: http://people.collaborativefusion.com/~wmoran/code/jailme.html PR: ports/107441 Submitted by: wmoran Revision Changes Path 1.877 +1 -0 ports/sysutils/Makefile 1.1 +26 -0 ports/sysutils/jailme/Makefile (new) 1.1 +3 -0 ports/sysutils/jailme/distinfo (new) 1.1 +7 -0 ports/sysutils/jailme/pkg-descr (new) _______________________________________________ cvs-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"