End of bind-chroot-admin script

[Matthew Garrett]

On Mon, Nov 10, 2008 at 02:26:30PM +0100, Adam Tkac wrote:

> Well, we are quite OT but could you point me how daemon could escape chroot
> when it is written correctly?

If the daemon is written correctly then you wouldn't need the chroot in 
the first place. The fundamental assumption behind these security 
policies is that you don't trust the software.

-- 
Matthew Garrett | mjg59 at srcf.ucam.org