Chroot

• In V7 Unix. Maybe earlier

• Restricts file system access only

• User root may^H^H^Hcan escape from chroot

• Non-root users cannot invoke chroot

• Many other attacks possible from chroot

  • Net access, cpu/file/swap exhaustion, system call probes

Previous slide

Next slide

Back to first slide

View graphic version