Hello Thomas,
that would be a very good point to start, I think.
What services can be made running chrooted.
Is there anywhere some good documentation?
Why does a major distribution does not support this by default?
Regards
Cornelius
T. Ribbrock wrote:
On Wed, Jun 25, 2003 at 12:28:59PM -0500, Ed
On Wed, Jun 25, 2003 at 12:28:59PM -0500, Ed Wilts wrote:
> One of the key differences between IIS and Apache is the way the web
> server is started.
[...]
> On Linux, however, the web server almost always run under a non-privileged
> account. If Apache is penetrated, the worst the attacker can do
