LinuxFocus.org: Chrooting All Services in Linux
Feb 08, 2002, 14:57 (9 Talkback[s])
(Other stories by Mark Nielsen)
"What is chroot? Chroot basically redefines the
universe for a program. More accurately, it redefines the "ROOT"
directory or "/" for a program or login session. Basically,
everything outside of the directory you use chroot on doesn't exist
as far a program or shell is concerned.
Why is this useful? If someone breaks into your computer, they
won't be able to see all the files on your system. Not being able
to see your files limits the commands they can do and also doesn't
give them the ability to exploit other files that are insecure. The
only drawback is, I believe it doesn't stop them from looking at
network connections and other stuff."