diff options
| author | Toni Uhlig <matzeton@googlemail.com> | 2019-02-27 13:16:05 +0100 |
|---|---|---|
| committer | Toni Uhlig <matzeton@googlemail.com> | 2019-02-27 13:16:05 +0100 |
| commit | e90f449ab3f44a2a3123d7ee6258b4fc1e3d910f (patch) | |
| tree | 291c4c7a389d3e917ea7e3e6f518d287c5466ce1 | |
| parent | 93ccffcb407836b100df2a45a204ccabd872ff3e (diff) | |
more secure chroot: chdir(chroot_path), chroot("."), chdir("/")
Signed-off-by: Toni Uhlig <matzeton@googlemail.com>
| -rw-r--r-- | src/ptunnel.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/ptunnel.c b/src/ptunnel.c index fad0944..b92f76c 100644 --- a/src/ptunnel.c +++ b/src/ptunnel.c @@ -178,7 +178,7 @@ int main(int argc, char *argv[]) { } if (opts.chroot) { pt_log(kLog_info, "Restricting file access to %s\n", opts.root_dir); - if (-1 == chdir(opts.root_dir) || -1 == chroot(opts.root_dir)) { + if (-1 == chdir(opts.root_dir) || -1 == chroot(".") || -1 == chdir("/")) { pt_log(kLog_error, "chdir/chroot `%s': %s\n", opts.root_dir, strerror(errno)); exit(1); } |