I was just wondering if anybody here tried to run ntop under a chroot environmment?
I explain the reason: I am running smoothwall, and would like to have more info about my network traffic. I know, bad idea to have a webserver running on a firewall (well... it seems smoothwall comes with an old version of apache and openssl both vulnerable anyway...), but I just want to try... especially since I am so close to succeed... (then after I'll just export the data on another box for analysis and just run tcpdump).
I have followed the excellent instruction from http://www.tjw.org/chroot-login-HOWTO/
I had to recompile su as suggested on that page because ntop uses su.
I am using the developpement version of ntop from the 07/01/02.
I have to use su cos smoothwall uses an older version of libc than the one I use on my dev linux box.
so far what I do and what I get is:
as root, do a chroot to the directory with all the required libs and binary to run ntop. I start ntop as another user: ntop -u whatever
everything works fine...
I then log on to my box: http://firewall:3000
and I get the ntop webpage... well... almost...
I just get the menu on the left and top... but no main page!!!
I can't display any results! it is just a blank page!
So I can see my ntop works (it starts in my console and my web browser connect to it) but there is no webapge with data instead of displaying the sortDataProtos.html for example
I tried to look for the sortDataProtos.html page on my dev linux box where the same version of ntop works but I can't find it. My guess it is a web page dynamically generated.
I will try to post this on a ntop forum, but I was just wondering if any of you has ever tried that...