I would like to initiate a discussion about LIDS and chroot to setup a secure server.
In my opinion, a good customized LIDS is more reliable and usable then chroot because
of this reasons:
Time to set up
I tooks a lot of time to get one programm running in a chroot environment, and unsualy
you have more then one programm running on a server.
Time to administrating
With chroot, you can't do only apt-get update && apt-get upgrade once for installing
If sombody gets a root shell in chroot, the securty is vanished
Again, this are my opinions, whats yours?