[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

anyone tried chroot_safe?



Has anyone here has tried out chroot_safe[1]?  Any comments on how well
it works, or how it compares security-wise to a normal chroot
environment?  I have a couple of small apps (such as the Folding@Home
client) which I'd like to run chroot'd, and this beastie sounds like an
ideal way to go about it.

For those of you aren't familiar, chroot_safe claims to chroot
dynamically linked applications without requiring all the libraries (and
other supporting files) to be present.  Apparently this is done by
pre-linking (via a LD_PRELOAD stub), and then chrooting before the app
is actually started.

[1] http://sourceforge.net/projects/chrootsafe



Reply to: