chroot & mount --bind = security ?
From: Julien Nury (jnury_at_voila.fr)
Date: 04/06/04
- Previous message: Eugenijus Januškevičius: "Re: iptables firewall script for debian-woody, 2.4.24"
- Next in thread: link: "Re: chroot & mount --bind = security ?"
- Reply: link: "Re: chroot & mount --bind = security ?"
- Reply: Thomas Knop: "Re: chroot & mount --bind = security ?"
- Reply: Enrico Scholz: "Re: chroot & mount --bind = security ?"
- Maybe reply: Scott Gifford: "Re: Re[2]: chroot & mount --bind = security ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 6 Apr 2004 06:51:48 -0000 To: focus-linux@securityfocus.com('binary' encoding is not supported, stored as-is)
Hi,
Imagine :
- An apache web server chrooted in /chroot/httpd, this server publish document in /chroot/httpd/var/www
- A FTP server chrooted in /chroot/ftpd
If we want to use the ftp server to update documents published by the web server, we have to open a communication between the 2 chrooted folders (!!!)
I would like to do like this :
- A folder /var/www witch contains my html documents
- mount --bind /var/www /chroot/httpd/var/www to allow the web server to access them
- mount --bind /var/www /chroot/ftpd/var/www to allow the ftp server to update them
And now ... questions :
- does it working ?
- is there a security problem with it ?
- is there another method (more secure/simple) to do this ?
Thanks for your read, have a nice day.
Julien Nury
- Previous message: Eugenijus Januškevičius: "Re: iptables firewall script for debian-woody, 2.4.24"
- Next in thread: link: "Re: chroot & mount --bind = security ?"
- Reply: link: "Re: chroot & mount --bind = security ?"
- Reply: Thomas Knop: "Re: chroot & mount --bind = security ?"
- Reply: Enrico Scholz: "Re: chroot & mount --bind = security ?"
- Maybe reply: Scott Gifford: "Re: Re[2]: chroot & mount --bind = security ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
