On Tue, Oct 14, 2014 at 1:09 AM, Dan Egli <[email protected]> wrote: > I was wondering if anyone had any good URLs for how-to's or FAQs that > explain how to run Apache in a chroot jail.
This seems to outline the steps to do just that: http://www.linux-faqs.info/apache/running-apache-in-chroot-jail > Any suggestions are welcome. Basically I'm trying to minimize the exposure > in case someone does try to hack me. :) Maybe it doesn't help you, because you've already got your server set up and running Linux, but I've become a big fan of FreeBSD in the server space. FreeBSD's jails (https://www.freebsd.org/doc/handbook/jails.html) are meant to do exactly what you're trying to do: divide your processes up into separate environments to minimize your security risk if a process is compromised. Of course it's not the only solution, but it's one that I know about that seems to fit the bill. /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
