It isn't that 'other systems are sane', but rather, 'other systems implement chroot() as a more elaborate hack.' The cost, of course, is performance, and code complexity.
I really don't know. I haven't looked at any code. I don't care that much, but I am curious. How would it be a "more elaborate hack" to avoid special-casing root? How would it result in more code complexity or less performance? I doubt performance is an issue in any case, but I would think that Linux's behavior would result in more code complexity.
I believe it is wrong for people to assume that silver bullets to their security problems exist.
I absolutely agree. (And I never even mentioned security in the first place.)
Maybe "sane" wasn't the right choice of words. Frankly, I was just surprised as I wasn't familiar with that behavior. I don't really see much advantage to it, but I guess I don't see much harm either. *shrug*
-sauoq "My two cents aren't worth a dime.";
In reply to Re: Re: Re: Re: exiting a chroot environment
by sauoq
in thread exiting a chroot environment
by storri
| For: | Use: | ||
| & | & | ||
| < | < | ||
| > | > | ||
| [ | [ | ||
| ] | ] |