Gentoo Archives: gentoo-security

From: Shane Hickey <shane@×××××××××××××××.com>
To: gentoo-security@l.g.o
Subject: Re: [gentoo-security] Advice about security solution
Date: Wed, 09 Nov 2005 20:39:26
Message-Id: 20051109133025.44eac9c1@daneel
In Reply to: Re: [gentoo-security] Advice about security solution by Anders Bruun Olsen
Anders Bruun Olsen <anders@×××××××××××.net> [2005-11-09 09:16]:
> > 3) Chroot jail daemon processes wherever possible. > > Hmm.. any good guides or pointers to get Apache, MySQL, Postfix, > Courier-imap, rsyncd, ventrilo, cs-server, zope and so on to run in > jails?
Here's some helpful links for hardening Apache/PHP (mod_security and chrooting) Apache/PHP4/Mysql hardening techniques (including chroot) http://www.howsyournetwork.com/index.php/cID/cca7317a/ID/a0dee364ae857df2f18a78e6679733c1/fuseaction/base.detail.htm How to get php's mail() function to work with mod_security chroot http://www.howsyournetwork.com/index.php/cID/cca7317a/ID/3c12dbef741f39e9e8f609f19ed455e0/fuseaction/base.detail.htm If those links wrap weird, try to go to the knowledge base on our site (http://www.howsyournetwork.com) and then click on "Web Servers" Shane -- Shane Hickey <shane@×××××××××××××××.com>: Network/System Consultant GPG KeyID: 777CBF3F Key fingerprint: 254F B2AC 9939 C715 278C DA95 4109 9F69 777C BF3F -- gentoo-security@g.o mailing list