Thanks a lot for your reply. -- Are you saying there is too much overhead or the end result is not worth any overhead??
Why bother chrooting apache, for example, and not leaving it with your recommended systrace? My question is motivated by exploits through Internet access; it seems to me server vulnerabilities are comparable to user's visiting unsafe websites / opening unsafe emails, etc. Plus, more and more user activity involves Internet access. Stephan On 5/25/05, Mike <[EMAIL PROTECTED]> wrote: > Stephan Wehner wrote: > > Mainly I'm worried about running a lot of user applications which > > connect to the Internet. But I can't estimate the overhead. > > > > choose wisely your applications and systrace(1) would most likely give > you some extra security.
