Ticket #88 (closed enhancement: wontfix)

Opened 13 years ago

Last modified 12 years ago

Lock down chroots on debuild.mit.edu

Reported by: tabbott Owned by:
Priority: trivial Milestone:
Component: -- Keywords:
Cc: Fixed in version:
Upstream bug:

Description (last modified by broder) (diff)

We should find a mechanism to lock down chroots on debuild.mit.edu.

Users need to become root within the build chroots to install packages. Normally, chrooting isn't considered a security mechanism, and so by design it's possible for root to escape from a chroot, meaning that any user who has root within the build chroot can potentially acquire root outside of the chroot.

This is a blocker for any sort of setup where debuild.mit.edu is open to the community.

Change History

comment:1 Changed 13 years ago by broder

  • Priority changed from critical to low
  • Type changed from defect to enhancement
  • Description modified (diff)
  • Summary changed from Install grsecurity on debuild.mit.edu to Lock down chroots on debuild.mit.edu

We've disabled local logins for all Athena accounts, so this is no longer a security concern.

Also, grsec is dying, so we need another way to lock down chroots.

comment:2 Changed 12 years ago by broder

  • Status changed from new to closed
  • Resolution set to wontfix
  • Component set to --
Note: See TracTickets for help on using tickets.