Slashdot Mirror

← Back to Stories (view on slashdot.org)

When Not to Use chroot

Posted by CowboyNeal on from the trust-no-one dept.

Hyena writes "Linux guru Alan Cox is quoted as saying 'chroot is not and never has been a security tool' in a KernelTrap article summarizing a lengthy thread on the Linux Kernel mailing list. The discussion began with a patch attempting to 'fix a security hole' in the Unix chroot command, trying to improve the ability of chroot to contain a process. When it was pointed out that people have been using chroot as a security tool for years, another kernel hacker retorted, 'incompetent people implementing security solutions are a real problem.' A quick search on the terms 'chroot+security' quickly reveals that many people have long thought (wrongly) that chroot's purpose was for improving security."

5 of 407 comments (clear)

  1. Re:I'll bite by TheRaven64 · · Score: 1, Funny

    I believe the correct procedure is to install this helper utility first.

    --
    I am TheRaven on Soylent News
  2. Re:misleading... by nine-times · · Score: 3, Funny

    People don't tend to maintain a list of links to every subject they've ever discussed. So somebody has to do the searching, rightfully it should be the one who wants to know the answer...

    Weren't you the one who just asked me elsewhere to post a link to the thread I was referring to?

  3. Re:misleading...Re:Asshole Stereotype by VGPowerlord · · Score: 3, Funny

    "You think Windows is better, just because there isn't a public record of every chair Microsoft's heads throw at their employees?"

    Fixed that for you.

    --
    GLaDOS for President 2016! "Well here we are again. It's always such a pleasure." -- GLaDOS, 2011
  4. When not to use chroot by c0d3h4x0r · · Score: 4, Funny

    When Not to Use chroot 1. While trying to get a date.
    2. While operating a motor vehicle.
    3. While dining at an expensive restaurant.
    4. While dancing.
    5. While urinating.
    6. While defending yourself against a murder charge.
    7. While picking fleas off a gorilla's back.
    8. While seasoning a fine hamburger patty.
    9. While being arrested.
    10. While having sex.
    --
    Moderator hint: a comment is neither "Flamebait" nor "Troll" if it is true.
  5. Re:Not for security use? by Jah-Wren+Ryel · · Score: 2, Funny

    So you're in the US? I go there 5 times a year man.
    Drop me an email, we'll arrange a meet. Let me know when you get to Denver, no reason to do it in email.
    Of course you would be an idiot to show.
    You have no idea how many local gangbangers and thugs want to give you a beat-down for your lame unix skillz.
    They fuckin' hate people who can't use the sticky bit right.
    --
    When information is power, privacy is freedom.