>4: If you're on a Sun, make a copy of /dev/zero in ~ftp/dev and chown
> it to root. Make sure it's readable.
> If there is a hole in your ftpd that lets someone get "root"
> access they can do you some damage even chrooted. It's just
Gack! I was going to ask why /dev/zero, in case you wanted to have
ftpd chrooted to a partition mounted "nodev" (ignore device files), but
my Suns' man pages don't list that as a mount option! I started a
thread on bugtraq about threats to be aware of from root in a chrooted
environment. Being able to mknod devices whence to mount verbotten
filesystems is one obvious attack, not to mention /dev/kmem, etc.