Thtlat seems sensible and useful.
Announcement
Collapse
No announcement yet.
Microsoft Security Researcher Proposes Unprivileged Chroot For Linux
Collapse
X
-
If this patch successfully adds the functionality without opening up new vulnerabilities, I might actually have to admit that Microsoft did something useful for me in Linux. But the pessimist in me says that this is likely going to open up new privilege escalation problems, so will either be rejected outright or end up being a black eye later.
- Likes 3
Comment
-
OpenBSD has ran processes inside chroot for years in the name of security and FreeBSD developed chroot jails to simplify the process and webservers are routinely ran inside jails on that platform. Nothing to see here other than Linux catching up to the *BSDs for once instead of the other way around as is often the case.
- Likes 3
Comment
-
Originally posted by macemoneta View Post
Sure, but only when root operations are intercepted. The rest of the time, performance isn't impacted.
- Likes 1
Comment
-
Originally posted by kylew77 View PostOpenBSD has ran processes inside chroot for years in the name of security and FreeBSD developed chroot jails to simplify the process and webservers are routinely ran inside jails on that platform. Nothing to see here other than Linux catching up to the *BSDs for once instead of the other way around as is often the case.
- Likes 1
Comment
Comment