Tomorrow, Gunther Birznieks <[EMAIL PROTECTED]> frothed and gesticulated...:
> > > >http://www.securityfocus.com/focus/sun/articles/apache-inst.html
Yup, that's good.
> http://penguin.epfl.ch/chroot.html
Yup, that's good too.
The key to successful chroot'ing, I've found, is running strace or trace
(depending on your platform) and looking at what files your httpd is
looking for, importing them into the chroot environment and doing that
iteratively until you're httpd is running and answering requests fully w/o
errors. It's a PITA the first time but simple enough to later turn into a
tarball and/or a shell script for later re-use.
Has anyone on the list run hosted mod_perl installations? I'm curious
about ISP's how they provision their users with mod_perl environments
safely.
-Ian
--
Salon Internet http://www.salon.com/
Manager, Software and Systems "Livin' La Vida Unix!"
Ian Kallen <[EMAIL PROTECTED]> / AIM: iankallen / Fax: (415) 354-3326
