> Please don't reply to a message when starting a new thread. Ok. > What problem are you trying to solve? If the user is chrooted into the > home directory, what programs would they run?
No, I had in mind all home directories set below an extra root: /separate/usr/... /separate/etc... and /separate/home/... What programs? I was thinking of all programs usually accessible through desktop systems. (Word Processing,Web,Mail,Chat,Scanning,Music--all that non-technical users run nowadays....) It struck me there may be only little overhead (file duplication, shared libraries, etc), but then no GUI exploit could get to the rest of the system. The rest of the system may then be in a better position to monitor the "Desktop" environment. (Maybe it is possible to arrange that the chroot environment has not even a root account). Mainly I'm worried about running a lot of user applications which connect to the Internet. But I can't estimate the overhead. Stephan On 5/24/05, Steve Shockley <[EMAIL PROTECTED]> wrote: > Stephan Wehner wrote: > > Does it make sense to run the "Desktop" (e.g., X11 / Gnome / clients) > > chroot'ed? Non-technical users can live without all the rest. > > Please don't reply to a message when starting a new thread. > > What problem are you trying to solve? If the user is chrooted into the > home directory, what programs would they run?
