Forum OpenACS Q&A: Response to Bugtraq: Oracle security

Posted by Jade Rubick on
That was my understanding of chroot'ing. But as far as I understand, Aolserver can be set up as a chroot that's fairly secure, because it doesn't need access to many other programs and libraries.

Jon, do you think that our Aolserver install guide should direct users to install it in a chroot environment by default? It doesn't seem like it'd be much harder to do, and there does seem to be a security gain.

What do the rest of you think? Am I suggesting something that's not really worth doing?