|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: chroot useful?
Claudio Telmon (claudio
link.it)
Sun, 09 Nov 1997 19:35:41 +0100
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
- Next message: Darren Reed: "Re: Additional TPC/IP stack"
- Previous message: Bill Kennedy: "Re: NoSpam! 2.07 & InfoSec Resources"
- Next in thread: Joseph S. D. Yao: "Re: chroot useful?"
Darren Reed wrote:
>
> Not *BSD anyway. Procfs (and kernfs) can be excluded from the kernel
> when you build them. Although they can then be modloaded, if you're
> allowing modloads in multiuser mode on your firewall, then you're just
> asking for trouble.
>
Yes, you can do the same on linux: compiling the kernel without proc
filesystem
and loadable module support. With the proc filesystem it's just more
simple, but as you and others pointed out, on a typical system the whole
thing is not becoming root, or else everything is possible.
Thanks
ciao
- Claudio
- Next message: Darren Reed: "Re: Additional TPC/IP stack"
- Previous message: Bill Kennedy: "Re: NoSpam! 2.07 & InfoSec Resources"
- Next in thread: Joseph S. D. Yao: "Re: chroot useful?"
This archive was generated by hypermail 2.0b3 on Sat Jul 17 1999 - 07:09:48 CDT