Bug#345741: [Pkg-sysvinit-devel] Bug#345741: Please add INIT_PROG env
var to override re-exec'ing from /sbin/init
Petter Reinholdtsen
pere at hungry.com
Tue Jan 3 09:20:47 UTC 2006
> However, if /sbin/init is on a read-only filesystem,
> or you want to redirect init to be running from a different
> filesystem because you need to umount /sbin ,
> this feature is inadequate.
This sounds like a security issue. If the admin made / read-only, and
someone is able to gain enough privileges to talk to init but not to
remount the file system, they could re-exec init with a binary they
provide instead of the binary the machine administrator intented to
run. Am I wrong? If I am right, I believe we should not implement
this feature.
More information about the Pkg-sysvinit-devel
mailing list