BIND 10 #1497: Chroot for socket creator
BIND 10 Development
do-not-reply at isc.org
Fri Dec 9 10:44:45 UTC 2011
#1497: Chroot for socket creator
-------------------------------------+-------------------------------------
Reporter: vorner | Owner:
Type: enhancement | Status: new
Priority: major | Milestone: New
Component: Boss of BIND | Tasks
Sensitive: 0 | Keywords:
Sub-Project: Core | Defect Severity: N/A
Estimated Difficulty: 0 | Feature Depending on Ticket:
Total Hours: 0 | Add Hours to Ticket: 0
| Internal?: 0
-------------------------------------+-------------------------------------
The socket creator should be able to create a temporary (empty) directory,
chroot there and delete the directory. As the socket creator should be the
only component running with elevated privileges, it should increase the
trust in its safety, even as chroot itself is not primarily security
related feature.
--
Ticket URL: <http://bind10.isc.org/ticket/1497>
BIND 10 Development <http://bind10.isc.org>
BIND 10 Development
More information about the bind10-tickets
mailing list