A month ago or so, Martin Schulze sent a message about his guidelines
to help with security in debian. It included a URL at infodrom.org.
Could someone please send me the message and the URL?
pgphaVdBqoFc7.pgp
Description: PGP signature
On Fri, May 30, 2003 at 09:20:19AM +0200, Filippi Marco wrote:
[snip]
> > > how can they be dropped?
> >
> > not sure, but I think that it'll work when you specify the outside
> > interface... For example: if you want to drop the http requests from
> > w.x.y.z then your rule should look like:
> >
On 30 May 2003, Jarno Gassenbauer wrote:
> P.S.: It's a pity that the syslogd socket is located
> at /dev/log and not in an own directory. A hardlink to
> /dev/log would have to be recreated after restarting
> syslogd. Mount-binding the whole /dev directory into
> the jail isn't fun either.
You c
Jarno Gassenbauer said on Fri, May 30, 2003 at 07:56:35PM +0200:
> I'm setting up a chrooted apache. All howto's I found
> _copy_ the required files into the directory that they
> later chroot into.
> Is it OK (read: safe) to use hardlinks and
> "mount --bind" instead?
I don't think so. From wh
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
> I'm setting up a chrooted apache. All howto's I found _copy_ the
> required files into the directory that they later chroot into.
> Is it OK (read: safe) to use hardlinks and "mount --bind" instead?
[snip]
> The files in /usr/chroot/apache/usr coul
Hi,
I'm setting up a chrooted apache. All howto's I found
_copy_ the required files into the directory that they
later chroot into.
Is it OK (read: safe) to use hardlinks and
"mount --bind" instead?
For example, before doing
# chroot /usr/chroot/apache /usr/sbin/apachectl start
I'd like to setu
On Fri, May 30, 2003 at 09:20:19AM +0200, Filippi Marco wrote:
[snip]
> > > how can they be dropped?
> >
> > not sure, but I think that it'll work when you specify the outside
> > interface... For example: if you want to drop the http requests from
> > w.x.y.z then your rule should look like:
> >
7 matches
Mail list logo
