Re: chroot wrapper? (Re: Another pbuilder run finished)
In article <[🔎] firstname.lastname@example.org>
>Is there any reason (beyond Unix history), why chroot is root-only? Can
>anything bad happen at all?
I think it's because of the dozens of known ways that chroot doesn't
protect a system, and the potential for many more if you look hard.
chroot wasn't designed as a security firewall.
If I'm root behind a chroot, I'm root on the system. If I design the
chroot area, I don't even have to be root behind the chroot.
Blars Blarson email@example.com
"Text is a way we cheat time." -- Patrick Nielsen Hayden