1 |
Hans-Werner Hilse wrote: |
2 |
|
3 |
> This won't work. Apache doesn't have inbuilt chroot facilities, AFAIK. |
4 |
> Like most of the other standard internet services. You would have to |
5 |
> setup a chroot env (all dependant libraries and stuff) for that. But |
6 |
> there's nothing similar to a chroot automatic in apache. BTW, such a |
7 |
> thing would probably break all CGIs. |
8 |
|
9 |
I got this idea reading "Securing & Optimizing Linux 3.0", where |
10 |
apache and php is running in chroot (+ a few more services like |
11 |
ssh, snort, ntp, bind, dhcp, ldap, mod_perl). |
12 |
|
13 |
Unfortunatelly, the book is a little out-of-date, and it is not |
14 |
easy to apply it to gentoo. But I think running apache+php+mod_perl |
15 |
in chroot would be definitelly nice feature... |
16 |
|
17 |
Jarry |
18 |
-- |
19 |
gentoo-user@g.o mailing list |