RE: [mod-security-users] Error using chroot functionality
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
RE: [mod-security-users] Error using chroot functionality
|
From: fwd <for...@if...> - 2004-07-08 21:02:06
|
Hi, A good howto for installing and configuring mod_security 1.8 with apache http://www.secuobs.com/tutoriels/03052004mod_security.html This is in french language but you can see all the good bash command to chroot your web server ... You can find a httpd.conf exemple including mod_security configuration with secchroot directive here : http://www.secuobs.com/tutoriels/03052004mod_security6.html#ht And an shell script which install automatically Apache for Linux with Openssl, Php4, Mysql, Mod_ssl, Mod_rewrite, Mod_perl , DSO and Mod_security with Snort rules on : http://www.secuobs.com/tutoriels/03052004mod_security7.html#at It's working very fine ! Fwd. > -----Original Message----- > From: mod...@li... > [mailto:mod...@li...] On > Behalf Of Daniel Pinsky > Sent: jeudi 8 juillet 2004 22:33 > To: iv...@we... > Cc: mod...@li... > Subject: Re: [mod-security-users] Error using chroot functionality > > I would like to have most of the files inside the jail. I > mean the libraries can be outside as they are loaded before > the SecChroot command, but I would like the logging to be > inside. The non-chroot path is /usr/local/apache. I would > imagine that security would be enhanced that way. I read and > followed the manual. What ordering are you referring to? > > > >From: Ivan Ristic <iv...@we...> > >To: Daniel Pinsky <dan...@ho...> > >CC: mod...@li... > >Subject: Re: [mod-security-users] Error using chroot functionality > >Date: Thu, 08 Jul 2004 20:19:33 +0100 > > > >Daniel Pinsky wrote: > > > > > I compiled mod_security-1.8.2 into apache_1.3.31. > Everything seems > > > to be ok. I wanted to chroot it to /chroot/apache. > > > > Is your goal to have most of the files outside the > > jail or inside? What is the non-chroot path? > > > > > > > The log and the directory do exist and the necessary file > rights do > > > exist!! any help would be appreciated. > > > > Did you configure module ordering as described in the manual? > > > >-- > >ModSecurity (http://www.modsecurity.org) [ Open source IDS for Web > >applications ] > > > > > >------------------------------------------------------- > >This SF.Net email sponsored by Black Hat Briefings & Training. > >Attend Black Hat Briefings & Training, Las Vegas July 24-29 > - digital > >self defense, top technical experts, no vendor pitches, unmatched > >networking opportunities. Visit www.blackhat.com > >_______________________________________________ > >mod-security-users mailing list > >mod...@li... > >https://lists.sourceforge.net/lists/listinfo/mod-security-users > > _________________________________________________________________ > Tired of spam? Get advanced junk mail protection with MSN Premium > http://join.msn.com/?pgmarket=en-ca&page=byoa/prem&xAPID=1994& > DI=1034&SU=http://hotmail.com/enca&HL=Market_MSNIS_Taglines > > > > ------------------------------------------------------- > This SF.Net email sponsored by Black Hat Briefings & Training. > Attend Black Hat Briefings & Training, Las Vegas July 24-29 - > digital self defense, top technical experts, no vendor > pitches, unmatched networking opportunities. Visit > www.blackhat.com _______________________________________________ > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users > > ___[ Pub ]____________________________________________________________ > Inscrivez-vous gratuitement sur Tandaime, Le site de rencontres ! > http://rencontre.rencontres.com/index.php?origine=4 ___[ Pub ]____________________________________________________________ Inscrivez-vous gratuitement sur Tandaime, Le site de rencontres ! http://rencontre.rencontres.com/index.php?origine=4 |
