ostbuild: Clarify "safely" for user-chroot

2011-12-06 14:39:30 -05:00 · 2011-12-06 14:39:30 -05:00 · a4b249e333
parent d32b2cb572
commit a4b249e333
1 changed files with 5 additions and 0 deletions
--- a/src/ostbuild/ostbuild-user-chroot.c
+++ b/src/ostbuild/ostbuild-user-chroot.c
@ -2,6 +2,11 @@
 *
 * user-chroot: A setuid program that allows non-root users to safely chroot(2)
 *
+ * "safely": I believe that this program, when deployed as setuid on a
+ * typical "distribution" such as RHEL or Debian, does not, even when
+ * used in combination with typical software installed on that
+ * distribution, allow privilege escalation.
+ *
 * Copyright 2011 Colin Walters <walters@verbum.org>
 *
 * This program is free software; you can redistribute it and/or modify