On Wednesday 10 June 2009 14:24:44 RB wrote: > If you choose to pursue this route, I highly suggest > at least looking at the grsecurity RBAC that is built into (and > supported in) the hardened-sources kernel. Well, I have such a kernel right now and quite likely, there is no need to rebuild it. I only lack some good information about how to set that Apache chroot up properly. Honestly I now tend to assume, my server is and will be only a mortal one, so I even consider just running it plainly. But if thats not an overkill, I'd like to jail Apache! Maybe you have some link...?
Chris, maybe I don't really need v-server? And yes, virtualisation is too heavy. Jan
