No, of course it doesn't, We don't want to run all httpd children as root do we ? Then the safety level gained with chroot() is lost by the fact you run as root. chroot() is easily broken by root anyway, so you end up with a really false sense of security. Regards, Joao On Mon, 19 Jan 2004 03:09:33 +0100 "Bostjan Skufca (at) domenca.com" <bostjan.skufca@xxxxxxxxxxx> wrote: > it doesn't fit per-vhost requirement > > On Saturday 17 of January 2004 13:33, Joao Schim wrote: > > Maybe this can help you ? > > > > http://www.devet.org/apache/chroot/ > > > > Kind regards, > > > > Joao Schim > > > > On Sat, 17 Jan 2004 04:45:24 +0100 > > > > "Bostjan Skufca (at) domenca.com" <bostjan.skufca@xxxxxxxxxxx> wrote: > > > Hello all, > > > > > > can anybody give me some hint about chrooting execution of cgi script > > > invoked through apache? > > > I would like to achieve this on per-virtual-host basis so every > > > virtual host would have different root dir to which it would chroot > > > execution of it's cgi scripts. If the price is perl installation in > > > every chroot jail so be it. > > > > > > Best regards, > > > > > > Bostjan Skufca > > > > > > - > > > : send the line "unsubscribe > > > linux-admin" in the body of a message to majordomo@xxxxxxxxxxxxxxx > > > More majordomo info at http://vger.kernel.org/majordomo-info.html > > -- > Best regards, > > Bostjan Skufca > system administrator > > Domenca d.o.o. > Phone: +386 4 5835444 > Fax: +386 4 5831999 > http://www.domenca.com > > -- Slurm, n.: The slime that accumulates on the underside of a soap bar when it sits in the dish too long. -- Rich Hall, "Sniglets" =========================================================================== Joao Schim telefoon:(+31)40-2649860 fax:(+31)40-2649861 http://www.bowtie.nl BowTie Technology BV Raiffeisenstraat 7 - 5611 CH Eindhoven - : send the line "unsubscribe linux-admin" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
