This (http://marc.theaimsgroup.com/?l=openbsd-misc&m=106233895501879&w=2) is an informative thread on chroot(), particularly Ted's post (http://marc.theaimsgroup.com/?l=openbsd-misc&m=106235858315292&w=2).

Very nice frisco! I remember reading an article about an attacker getting out of an chroot enviroment by paramater tampering with a perl script through GET... I though, wait, it's in a chroot jail though... Thanks for the info :)