ok ,
You can just create a Low Privileged user account ( webuser )
whose home is at /home/webuser or may be /tmp
and then use any browser , any client
-ARUN
--- On Wed, 25/3/09, punoseva...@gmail.com <punoseva...@gmail.com> wrote:
From: punoseva...@gmail.com <punoseva...@gmail.com>
Subject: chroot browser
To: misc@openbsd.org
Date: Wednesday, 25 March, 2009, 10:58 PM
Hi misc,
I was wondering if you could give me some input about the following security
matter. It seems to me that using a web-browser, an email client, and
a chat client (if permitted at all) are the
un-safest forms of interaction of a typical desktop user with his/hers
computer. Apart of standard protective techniques as using a web-proxy
is there are any benefit in running web-browser in chroot environment
per user? It looks to me no, especially in a light of the fact that
application must have the access to X server. Could anybody elaborate
on what would be a typical desktop application, if any, which would be a
good candidate for chroot.
Thanks,
Predrag
Add more friends to your messenger and enjoy! Go to
http://messenger.yahoo.com/invite/
