Forgot your password?

typodupeerror
Security

"Chroot Is Not and Never Has Been a Security T->

Submitted by Hyena
Hyena writes "Linux guru Alan Cox is quoted as saying 'chroot is not and never has been a security tool' in a KernelTrap article summarizing a lengthy thread on the Linux Kernel mailing list. The discussion began with a patch attempting to 'fix a security hole' in the Unix chroot command, trying to improve the ability of chroot to contain a process. When it was pointed out that people have been using chroot as a security tool for years, another kernel hacker retorted, 'incompetent people implementing security solutions are a real problem.' A quick search on the terms 'chroot+security' quickly reveals that many people have long thought (wrongly) that chroot's purpose was for improving security."
Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

"Chroot Is Not and Never Has Been a Security T

Comments Filter:

It is impossible to make anything foolproof because fools are so ingenious.

Working...