1 |
Hello, |
2 |
I would like to see some opinions on chrooting - |
3 |
|
4 |
1) how big are possible risks of hardened gentoo system compromise, if apache |
5 |
is run normally, therefore a need of chrooting? |
6 |
|
7 |
2) suppose I chroot Apache: what chances it still has to harm something in the |
8 |
outside OS? My knowledge about various system capabilities, network etc is |
9 |
too little, so enlighten me... And how big is an Apache chroot? |
10 |
|
11 |
And by the way, how big are the risks for sshd and ntpd to open up a way into |
12 |
the hardened gentoo system? Can that recent ntp glsa be ignored, if its |
13 |
hardened with memory protections? |
14 |
|
15 |
Jan |