On Mon, Jan 07, 2002 at 09:06:32AM -0500, Joe Abley wrote:
> On Sun, Jan 06, 2002 at 11:23:45AM -0800, Crist J. Clark wrote:
[snip]
> > I was talking more about running named(8) as bind:bind. Chrooting has
> > other issues, you need to actually build a chroot environment
> > somewhere and decide what to put in it, and you still need to run as
> > bind:bind for chrooting to be much of a security measure.
>
> I will disagree with your last point...
root can always break out of a chroot.
--
"It's always funny until someone gets hurt. Then it's hilarious."
Crist J. Clark | [EMAIL PROTECTED]
| [EMAIL PROTECTED]
http://people.freebsd.org/~cjc/ | [EMAIL PROTECTED]
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-stable" in the body of the message
