| 1 |
Hello, |
| 2 |
I would like to see some opinions on chrooting - |
| 3 |
|
| 4 |
1) how big are possible risks of hardened gentoo system compromise, if apache |
| 5 |
is run normally, therefore a need of chrooting? |
| 6 |
|
| 7 |
2) suppose I chroot Apache: what chances it still has to harm something in the |
| 8 |
outside OS? My knowledge about various system capabilities, network etc is |
| 9 |
too little, so enlighten me... And how big is an Apache chroot? |
| 10 |
|
| 11 |
And by the way, how big are the risks for sshd and ntpd to open up a way into |
| 12 |
the hardened gentoo system? Can that recent ntp glsa be ignored, if its |
| 13 |
hardened with memory protections? |
| 14 |
|
| 15 |
Jan |
Archives