From a4b249e333d9c72dff6129a57764571322b6f8c4 Mon Sep 17 00:00:00 2001 From: Colin Walters Date: Tue, 6 Dec 2011 14:39:30 -0500 Subject: [PATCH] ostbuild: Clarify "safely" for user-chroot --- src/ostbuild/ostbuild-user-chroot.c | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/src/ostbuild/ostbuild-user-chroot.c b/src/ostbuild/ostbuild-user-chroot.c index c75654a5..6781b388 100644 --- a/src/ostbuild/ostbuild-user-chroot.c +++ b/src/ostbuild/ostbuild-user-chroot.c @@ -2,6 +2,11 @@ * * user-chroot: A setuid program that allows non-root users to safely chroot(2) * + * "safely": I believe that this program, when deployed as setuid on a + * typical "distribution" such as RHEL or Debian, does not, even when + * used in combination with typical software installed on that + * distribution, allow privilege escalation. + * * Copyright 2011 Colin Walters * * This program is free software; you can redistribute it and/or modify