Hi,
I am researching on the best way to chroot an Apache server. According to all the
documentation that I could find, it seems to suggest that I should not hard link
shared libraries and binaries into the chroot jail. Rather, I should make seperate
copies of them. I was thinking that this would save both harddisk space and memory,
and not compromise security. Since every process that is runned in the jail is
non-root. Of course, setuid binaries and useless /dev entries would not be linked in.
-- Ho Ming Shun
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
