anyone tried chroot_safe?
Has anyone here has tried out chroot_safe[1]? Any comments on how well
it works, or how it compares security-wise to a normal chroot
environment? I have a couple of small apps (such as the Folding@Home
client) which I'd like to run chroot'd, and this beastie sounds like an
ideal way to go about it.
For those of you aren't familiar, chroot_safe claims to chroot
dynamically linked applications without requiring all the libraries (and
other supporting files) to be present. Apparently this is done by
pre-linking (via a LD_PRELOAD stub), and then chrooting before the app
is actually started.
[1] http://sourceforge.net/projects/chrootsafe
Reply to: