httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Marian D Marinov <hack...@hydra.azilian.net>
Subject Re: [users@httpd] SSL & mod_chroot
Date Tue, 08 Feb 2005 14:40:58 GMT
I currently use mod_chroot on one shared hosting machine... but this module 
does not give you the security you really need...
It is better to chroot the hole apache! without using this module ;(
There was a ways where a user can access file out of the chroot using 
mod_chroot, while chrooting the hole apache gives more security.

Dan, suEXEC gives you security to scripts which are actually executed by it! 
But when you have shared hosting some users can use scripts executed by the 
user of the apache daemon and executing code which can lead to unauthorized 
access. So it is good to chroot the apache daemon, to minimize the danger.

На вторник 08 февруари 2005 03:19 п.о. John написа:
> Hello all
>
> Has anyone tried to mod_chroot apache 1.x or 2.x (enabling also mod_ssl) ?

-- 
| Registered Linux User #309995 at http://counter.li.org
| One Planet, One Internet.
| We Are All Connected.
\__________________

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message