Chroot Jail Not Secure for Sandboxing Python?
gregpinero at gmail.com
gregpinero at gmail.com
Mon Jun 25 23:19:30 EDT 2007
On Jun 25, 4:12 pm, Bjoern Schliessmann <usenet-
mail-0306.20.chr0n... at spamgourmet.com> wrote:
> gregpin... at gmail.com wrote:
> > I followed up with my ISP. Here's the answer I got:
>
> > The os.exec call prepends the chroot directory to the absolute
> > path, but does NOT provide chroot for the child process.
>
> That sounds like rubbish to me. If it worked like that, chrooting
> servers would be virtually useless.
You're right. It turns out he was referring to fakechroot. Chroot
shouldn't have this problem.
-Greg
More information about the Python-list
mailing list