What chroot() is really for

Posted Oct 5, 2007 12:38 UTC (Fri) by addw (guest, #1771)
In reply to: What chroot() is really for by wahern
Parent article: What chroot() is really for

why do a million administrators have to lock down applications when the developer could have written the application better to begin with.

Because security is best done in depth; ie multiple layers so that if one fails you hopefully prevent problems by another layer.

I am not saying that applications should not be well coded, but we need to be realistic and realise that all programs have bugs.