using chroot option for ntpd

[Zach]

a chroot would help mitigate a potential priveledge escalation
vulnerability that might exist elsewhere in the system.

services that can potentially be exploited, even if only to gain user
access, should be run chrooted when possible, especially if it costs
nothing in terms of system resources, convenience, or administrative
overhead.

On 7/22/05, Martin Pitt <martin.pitt at ubuntu.com> wrote:
> Hi!

> With the current default Linux kernel, chroots do nothing to improve
> security. ntpd runs as normal user, so it already has only minimal
> privileges, and can't do anything serious on the hard disk anyway. So
> what would be the benefit of chrooting it?
> 
> Martin
> 
> --