From: | Shane Hickey <shane@×××××××××××××××.com> | ||
---|---|---|---|
To: | gentoo-security@l.g.o | ||
Subject: | Re: [gentoo-security] Advice about security solution | ||
Date: | Wed, 09 Nov 2005 20:39:26 | ||
Message-Id: | 20051109133025.44eac9c1@daneel | ||
In Reply to: | Re: [gentoo-security] Advice about security solution by Anders Bruun Olsen |
1 | Anders Bruun Olsen <anders@×××××××××××.net> [2005-11-09 09:16]: |
2 | > > 3) Chroot jail daemon processes wherever possible. |
3 | > |
4 | > Hmm.. any good guides or pointers to get Apache, MySQL, Postfix, |
5 | > Courier-imap, rsyncd, ventrilo, cs-server, zope and so on to run in |
6 | > jails? |
7 | |
8 | Here's some helpful links for hardening Apache/PHP (mod_security and |
9 | chrooting) |
10 | |
11 | Apache/PHP4/Mysql hardening techniques (including chroot) |
12 | http://www.howsyournetwork.com/index.php/cID/cca7317a/ID/a0dee364ae857df2f18a78e6679733c1/fuseaction/base.detail.htm |
13 | |
14 | How to get php's mail() function to work with mod_security chroot |
15 | http://www.howsyournetwork.com/index.php/cID/cca7317a/ID/3c12dbef741f39e9e8f609f19ed455e0/fuseaction/base.detail.htm |
16 | |
17 | If those links wrap weird, try to go to the knowledge base on our site |
18 | (http://www.howsyournetwork.com) and then click on "Web Servers" |
19 | |
20 | Shane |
21 | |
22 | -- |
23 | Shane Hickey <shane@×××××××××××××××.com>: Network/System Consultant |
24 | GPG KeyID: 777CBF3F |
25 | Key fingerprint: 254F B2AC 9939 C715 278C DA95 4109 9F69 777C BF3F |
26 | -- |
27 | gentoo-security@g.o mailing list |