Forum OpenACS Q&A: Response to Bugtraq: Oracle security

The attacker may be after your community system or he may just be after
another zombie or a place to hide some files (games or top secret military
documents or whatever).  You want to prevent the attacker from accessing
your system in any unauthorized manner.

Also he could follow one hole into the system, say through openacs, elevates
his access using an exploit, possibly against a binary we don't have in the
chroot system, and then as all powerful root has the power to do whatever he
wants against our community system.