From: Marcus Meissner [mailto:meissner@suse.de] Sent: Wednesday, 19 January 2005 10:43 p.m.
There is no extra chroot protection.
Is there any chance that the tightening up of chroot's might be looked at by the SuSE Security team? I am just wondering because Solaris 10 x86 (due out this month) has an inbuilt mechanism for walling off applications from the rest of the system (I think it's called "Solaris Containers"). I really like SLES 8, it has run brilliantly for the last 10 months with zero problems, but I'll be making a decision sometime this year to move to either SLES 9 or to Solaris 10 x86. I'll be basing that partly on which one offers more secure encapsulation of multiple applications running on the same server. I guess another question would be "Is SuSE planning to implement any kind of server virtualization?". Cheers Mike