Re: [mod-security-users] SecChrootDir -> Premature end of script headers

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

he...@gm... wrote:
> Hello there,
> I've got some Problems but at first some Informations:

   With the wealth of information you have provided it's much easier
   to diagnose the problem.

> My mod_security:
> debian:/etc/apache2/mods-enabled# apt-cache show libapache2-mod-security
> Package: libapache2-mod-security
> Priority: optional
> Section: web
> Installed-Size: 128
> Maintainer: Bruno Rodrigues
> Architecture: i386
> Source: libapache-mod-security
> Version: 1.8.4-1.1

   You would be better off using 1.8.7, I've fixed a dozen or
   so bugs since 1.8.4.

> PHP is configured to run as CGI with suPHP.

   This is the problem. Your jail probably does not contain all
   the files needed for a new PHP process to start (with or
   without suPHP). Because your Apache setup requires new
   processes to be created at runtime you must setup the
   jail the old-fashioned way.

   Chapter 2 of Apache Security, Installation and Configuration,
   is available free of charge:

   http://www.apachesecurity.net/download/apachesecurity-ch02-beta.pdf

   It contains detailed instructions how to create a jail
   from scratch. Good luck :)

-- 
Ivan Ristic
Apache Security (O'Reilly) - http://www.apachesecurity.net
Open source web application firewall - http://www.modsecurity.org