|
I would like to initiate a discussion about LIDS
and chroot to setup a secure server.
In my opinion, a good customized LIDS is more
reliable and usable then chroot because
of this reasons:
Time to set up
I tooks a lot of time to get one programm running
in a chroot environment, and unsualy
you have more then one programm running on a
server.
Time to administrating
With chroot, you can't do only apt-get update
&& apt-get upgrade once for installing
security updates.
Security
If sombody gets a root shell in chroot, the securty
is vanished
Again, this are my opinions, whats
yours?
greetings benjamin
|