hide mounts in procfs inside chroot?

Discuss and suggest new grsecurity features

hide mounts in procfs inside chroot?

Postby purel » Wed Sep 03, 2003 5:58 am

hi, is it a good idea to hide mounts in procfs while in chroot to prevent information leaking?
i mean mounts which were mounted outside chroot. the distro is running very fine inside
chroot, but i don't want the people to do simply cat /proc/self/mounts to discover what
other mounted filesystems are there. just to force people to think they aren't inside chroot :-)
purel
 
Posts: 2
Joined: Wed Sep 03, 2003 5:40 am

Postby spender » Thu Sep 04, 2003 7:05 pm

They'll know they're in a chroot when they try to kill init and they get back ESRCH
There are plenty more ways they could know they're in a chroot (attempting attacks that would normally work in a chroot, but now don't)
-Brad
spender
 
Posts: 2185
Joined: Wed Feb 20, 2002 8:00 pm


Return to grsecurity development

cron