using chroot option for ntpd

Martin Pitt martin.pitt at ubuntu.com
Fri Jul 22 03:17:04 CDT 2005


Hi!

stan [2005-07-22  8:32 +0100]:
> ntpd has a -i option to chroot itself, which the ntp-simple package
> isn't using.  Is it worthwhile using it given that it does switch to a
> non root/restricted user?

With the current default Linux kernel, chroots do nothing to improve
security. ntpd runs as normal user, so it already has only minimal
privileges, and can't do anything serious on the hard disk anyway. So
what would be the benefit of chrooting it?

Martin

-- 
Martin Pitt              http://www.piware.de
Ubuntu Developer   http://www.ubuntulinux.org
Debian Developer        http://www.debian.org



More information about the ubuntu-devel mailing list