From: klavs klavsen (kl_at_vsen.dk)
Date: Thu 21 Feb 2002 - 09:18:33 GMT
On Wed, 2002-02-20 at 20:35, Jacques Gelinas wrote:
> bind in newer distribution runs as user named. So combining the special
> user ID + chroot is very robust.
>
> the issue of chroot and vserver was important because a vserver has to
> allow root process inside the vserver and as such has to allow chroot system call
> in many cases. But in general, to jail a process using chroot, you switch to
> another user ID. then chroot is reliable and robust.
Thankyou for that tip :-)
This is something for the FAQ I think. I'll put together some points, as
soon as I've finished the Man-pages :-)
-- Regards, Klavs Klavsen-------------| This mail has been sent to you by: |------------ Klavs Klavsen - OpenSource Consultant kl_at_vsen.dk - http://www.vsen.dk
Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter