Don't forget that - you will of course waste ram since every library etc is loaded multiple times- it's not secure if you use a kernel with modules or allow raw memory access (don't remember what it's called exactly) since the user could change the running kernel to allow him to escape the jail once he has become root.
chj At 20:03 Uhr +0200 17.8.2001, Vineet Kumar wrote:
If anyone else has any suggestions on how to improve this, or can point out why it's inherently flawed, it's much appreciated.