LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 12-23-2008, 06:05 AM   #1
clau_bolson
Member
 
Registered: Nov 2003
Location: Argentina
Distribution: Debian Sarge
Posts: 52

Rep: Reputation: 15
Apache chrooted?


Hi,
five years ago I installed an Apache server in a chroot jail.
I am installing a new server now, on CentOS 5.2.
Apache version is 2.2.3
Trying to find a tutorial on how to chroot Apache on CentOS or RHEL, I can't find any!

Chrooting Apache is not used anymore?
Is there a better way to do the job?
Is it recommended, anyway?
Thanks.

Last edited by clau_bolson; 12-23-2008 at 06:07 AM.
 
Old 12-23-2008, 08:08 AM   #2
rweaver
Senior Member
 
Registered: Dec 2008
Location: Louisville, OH
Distribution: Debian, CentOS, Slackware, RHEL, Gentoo
Posts: 1,833

Rep: Reputation: 163Reputation: 163
Quote:
Originally Posted by clau_bolson View Post
Hi,
five years ago I installed an Apache server in a chroot jail.
I am installing a new server now, on CentOS 5.2.
Apache version is 2.2.3
Trying to find a tutorial on how to chroot Apache on CentOS or RHEL, I can't find any!

Chrooting Apache is not used anymore?
Is there a better way to do the job?
Is it recommended, anyway?
Thanks.
What you're probably looking for is information on libapache2-mod-security. There are tutorials and documentation available on the web and of course additional information is available at http://www.modsecurity.org/ (much easier to find when you know what to look for.)

I generally run apache as a standard user who has very limited access with suphp and suexec. So that each users scripts are owned by them and execute with their (very limited) privileges. It also lets me make sure that nothing nefarious is being done outside of my /var/www directory.

When I move into the future with my new server setup I'll most likely update to either mod security or look at a slightly different setup. This, however, has worked well so far.

Chrooting apache on any given flavor of linux isn't significantly different, so a debian tutorial is going to largely be similar to a redhat tutorial except for the rpm/deb commands.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Chrooted Apache and phpsysinfo jaakkop Linux - Networking 0 09-18-2006 10:41 AM
chrooted apache problem ixion Linux - Security 19 03-29-2005 03:21 AM
chrooted apache on suse dominant Linux - Security 3 11-10-2004 11:08 AM
Chrooted Apache dominant Linux - Security 4 09-20-2004 02:48 AM
chrooted apache server won't start tca23 Linux - Software 3 08-30-2004 08:51 AM


All times are GMT -5. The time now is 07:41 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration