[1962] in WWW Security List Archive
Re: chroot-ed httpd
daemon@ATHENA.MIT.EDU (Rolf Weber)
Thu May 2 17:15:15 1996
From: Rolf Weber <weber@iez.com>
To: ramana@eng2.uconn.edu
Date: Thu, 2 May 1996 20:44:36 +0200 (MESZ)
Cc: www-security@ns2.rutgers.edu (www-security)
In-Reply-To: <Pine.SUN.3.91.960501173607.1358D-100000@lurch-fddi> from "ramana@eng2.uconn.edu" at May 1, 96 05:40:28 pm
Errors-To: owner-www-security@ns2.rutgers.edu
>
> There are problems running the deamon in chroot environment, specially if
> there are lot of users on the system.
>
resolvable problems :-)
>
> All the directories and files should exist under this direcotry and no
> symbolic links outside the root(/ for chroot-ed directory).
>
but vice versa works...
>
> Also if you are running scripts using perl or sh, then the executables
> and libraries they use should exist in the chroot-ed path..
>
hardlinks work if it's the same filesystem.
> You might need a copy of the passwd and group file if you want users to
> be able to have html files in their public_html
>
...but with no valid encrypted passwords.
rolf
--
-----------------------------------------
Rolf Weber <weber@iez.com> | All I ask is a chance
IEZ AG D-64625 Bensheim | to prove that money
++49-6251-1309-113 | can't make me happy.
