Re: Proposal: Enabling unprivileged chroot by default

On 8/5/25 14:59, Jordan Gordeev wrote:
> If a system manager wants to allow unprivileged users to use chroot(8), they can easily allow that by setting the sysctl to 1 on their system. Taking that into account, what problem will changing the default solve?
> 
> Do the majority of FreeBSD users simultaneously:
>    1) have a desire to use chroot(8) as an unprivileged user
>    2) have no clue how to change a sysctl?
> 

You're assuming every FreeBSD user is a sysadmin.  That's probably not 
too far from the truth, but I've managed many FreeBSD and Linux systems, 
including HPC clusters, for researchers who had shell access but no 
admin rights.

I'm also nervous about enabling this by default, and believe there 
should be plenty of time allowed for review, but it will benefit some 
people using tools that rely on chroot.

-- 
Life is a game.  Play hard.  Play fair.  Have fun.