View the Most Wanted LQ Wiki articles.
Go Back > Blogs
User Name



sshd chroot jails based on hostname and SELinux

Posted 04-01-2013 at 11:46 AM by sag47
Updated 04-01-2013 at 11:51 AM by sag47

Why chroot jails based on host name?
If you don't care about the background info just jump to Setting up sshd chroot jail and SELinux.

So I have started configuring automated deployments through my organization using a continuous integration server called Jenkins. I'll post more on Jenkins regularly so that eventually you can have a series of posts which wrap up into a nice and secure howto for Jenkins. So here's why I want chroot jails based on host names.

Senior Member
Views 4794 Comments 0 sag47 is offline

OpenSSH daemon hardening ( Part 3 ) - Setup a chroot enviroment on CentOS with JailKit[ANNOUNCEMENT]

Posted 12-10-2010 at 09:16 AM by angelo.fonzeca (Angelo Fo. personal blog)
Updated 12-13-2010 at 07:31 AM by angelo.fonzeca

[Note: This is a draft version of the post; it'll be revised as soon as possible]

Introduction - What is a chroot?

"A chroot on Unix operating systems is an operation that changes the apparent disk root directory
for the current running process and its children. A program that is
re-rooted to another directory cannot access or name files outside that
directory, and the directory is called a "chroot jail" or
PerseusGuard Developer
Posted in Linux Security
Views 1737 Comments 0 angelo.fonzeca is offline

chroot PHP for use with nginx

Posted 10-31-2010 at 11:40 AM by Web31337 (In The Middle Of Nowhere [edK's blog])

I never had to deal with chrooted environment before, and there isn't lots of info out there on the net. Best result I've found so far is
Actually, it covers almost entire topic, but I'm going to explain how to bind it with nginx in gentoo linux environment.
Say, you have a site with some app you don't really trust in /app dir. Your own-written site scripts are executed in non-chrooted PHP environment...
Posted in opensource, security
Views 4424 Comments 0 Web31337 is offline


All times are GMT -5. The time now is 08:16 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration