Bug#345741: [Pkg-sysvinit-devel] Bug#345741: Please add INIT_PROG env var to override re-exec'ing from /sbin/init

Petter Reinholdtsen pere at hungry.com
Tue Jan 3 09:20:47 UTC 2006


> However, if /sbin/init is on a read-only filesystem,
> or you want to redirect init to be running from a different
> filesystem because you need to umount /sbin ,
> this feature is inadequate.

This sounds like a security issue.  If the admin made / read-only, and
someone is able to gain enough privileges to talk to init but not to
remount the file system, they could re-exec init with a binary they
provide instead of the binary the machine administrator intented to
run.  Am I wrong?  If I am right, I believe we should not implement
this feature.




More information about the Pkg-sysvinit-devel mailing list