Re: [mod-security-users] chroot and mod security
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] chroot and mod security
|
From: Ivan R. <iv...@we...> - 2004-01-14 21:34:20
|
> I need to run a chroot for the apache server. I have the > code installed with the default path /usr/local/apache2. I > am using the SecChrootDir directive but I can't seem to get > it right. I will see a directory doesn't exist or like > message in the logfile. What exactly does it say? > Shouldn't the chroot'd jail be /usr/local/apache2? No, not really. It depends on where you've put your document root. Assuming it's in /usr/local/apache2/htdocs, the easiest way to do a chroot is to create a folder /chroot/usr/local/apache2/htdocs, put the web site there (just the web site, leave everything else as is), and chroot with "SecChrootDir /chroot/". That way you won't have to change your httpd.conf much and you can easily switch between a chrooted and the non-chrooted installation. I guess that more documentation on chrooting is needed, I'll see that I update it soon. -- ModSecurity (http://www.modsecurity.org) [ Open source IDS for Web applications ] |
