Subject: Re: extending chroot()
To: None <>
From: Christos Zoulas <>
List: tech-security
Date: 01/17/2003 18:40:45
In article <>,
Steven M. Bellovin <> wrote:
>In message <>, "Greg A. Woods" writes:
>>[ On Thursday, January 16, 2003 at 16:08:57 (-0500), Steve Bellovin wrote: ]
>>> Subject: extending chroot()
>>> Comments?  (I wish that socket() went through the file system, so that 
>>> I could restrict network access that way, too.)
>>Isn't this where someone's supposed to pipe up and say "If you wanted
>>Plan 9 then you know where to find it!"  :-)

There is nothing wrong with the `everything is a file' approach, and over
the years many commercial and non commercial unixes have been gradually
doing that.