Chroot Is Not and Never Has Been a Security T

"Chroot Is Not and Never Has Been a Security T-> 0

Submitted by Hyena on Thursday September 27 2007, @03:03PM

Hyena writes "Linux guru Alan Cox is quoted as saying 'chroot is not and never has been a security tool' in a KernelTrap article summarizing a lengthy thread on the Linux Kernel mailing list. The discussion began with a patch attempting to 'fix a security hole' in the Unix chroot command, trying to improve the ability of chroot to contain a process. When it was pointed out that people have been using chroot as a security tool for years, another kernel hacker retorted, 'incompetent people implementing security solutions are a real problem.' A quick search on the terms 'chroot+security' quickly reveals that many people have long thought (wrongly) that chroot's purpose was for improving security."
Link to Original Source

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

"Chroot Is Not and Never Has Been a Security T

Load All Comments

Search 0 Comments Log In/Create an Account

Comments Filter:

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

"Chroot Is Not and Never Has Been a Security T-> 0

"Chroot Is Not and Never Has Been a Security T More Login

"Chroot Is Not and Never Has Been a Security T

Slashdot