[mod-security-users] Re: mod_security v1.8.4 Chroot problem

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Gareth Ledger wrote:

> I am trying to get mod_security chroot support working on my server, but I
> am getting the following error.
> 
> ...
>
> [Tue Oct 12 11:30:16 2004] [notice] mod_security: chroot checkpoint #2
> (pid=2291 ppid=1)
> [Tue Oct 12 11:30:16 2004] [notice] mod_security: chroot successful,
> path=/chroot/apache
> [Tue Oct 12 11:30:16 2004] [error] (2)No such file or directory: could not
> create /etc/httpd/run/httpd.pid
> [Tue Oct 12 11:30:16 2004] [error] httpd: could not log pid to file
> /etc/httpd/run/httpd.pid

  Looking at this I'd say the /chroot/apache/etc/httpd/run folder
  does not exist.

> The System is:- Fedora Core 2 (Full patched)
>                Apache 2
>                FrontPage Extensions
>                SquirrelMail
>                mod_security v1.8.4
>  
> I have configured mod_security as follows:-
>  
> Added SecChrootDir /chroot/apache to mod_security.conf
>  
> Created the following directory structure:    /chroot/apache
>                                               /chroot/etc/httpd
>                                               /chroot/var/log/httpd
>                                               /chroot/var/run
>  
> I have created two symbolic links in /chroot/etc/httpd to
> /chroot/var/log/httpd and /chroot/var/run

  Maybe you created them with "ln -s /chroot/apache/var/run" ? That
  won't work from inside the jail since it's using the path
  that is only correct outside the jail. Try:

  cd /chroot/apache/etc/httpd
  (rm existing run dir first ;)
  ln -s ../../var/run

-- 
ModSecurity (http://www.modsecurity.org)
[ Open source IDS for Web applications ]