Highest Voted 'chroot' Questions - Server Fault Stack Exchange

1

vote

1 answer

Chroot jail of Nginx and php

I'm hosting multiple websites on one VPS, and want to chroot each website, eg. /chroot/website1 /chroot/website2 I'm using makejail, which is a highlevel tool, for creating the jails, and copying the libraries and dependencies. Easy peasy. Each…

asked Nov 27 '11 at 15:38

sqren

249
1
13

1

vote

1 answer

How can I set a global sftp chroot for a group (or all) users on a server

Possible Duplicate: set up a chrooted SFTP login with OpenSSH I am not familiar with chroot jails so please forgive my ignorance. From my understanding you would normally chroot a user to their home directory - ex: /home/username. I would like…

security linux sftp chroot

asked Sep 07 '11 at 21:17

ckliborn

2,778
4
25
37

1

vote

4 answers

Problem with symbolic links in FTP client

I've recently run into some problems while trying to setup a FTP server a certain way. I have a client who has a LOT of data put into one folder. The client then has various directories by which the data is organized. At the end (of the "directory…

linux ubuntu ftp chroot

asked Aug 15 '11 at 15:35

Falcata

111
1
1
2

1

vote

2 answers

Secure PHP environments with PHP-FPM and SFTP

I'd like to set up secure environments for a small number of untrusted PHP websites on a Debian server. Right now everything runs on the same Apache2 with mod_php5 and vsftpd for administrative file access, so there is room for improvement. The idea…

nginx sftp php-fpm chroot

asked Jul 28 '11 at 15:01

pdd

11
2

1

vote

1 answer

Share multiple directories to ftp users

I have multiple directories spread over the file systems of multiple Ubuntu 10.04 servers. The requirements are to allow a handful of people access a few of these directories over ftp. For example joe needs to ftp files to /apps/app1. alice needs…

linux ftp network-share chroot

asked Jul 19 '11 at 16:41

Upgradingdave

241
5
13

1

vote

4 answers

Restrict users to their home directory

How do I restrict the user to his current directory only? I tried the steps mentioned on this page to configure rssh chroot jail to lock users to their home directories only, but this looks too complicated. Is there an easier way?

linux centos chroot

asked May 26 '11 at 06:18

shantanuo

3,579
8
49
66

1

vote

2 answers

When is it not worth putting Apache in a chroot jail?

I don't mean to question the well established security precaution of putting apache in a chroot-jail in most scenarios but in my scenario I have doubts. We have a virtual server hosting a single application - a webservice. This guide says I should…

apache-2.2 security web-server chroot best-practices

asked May 25 '11 at 03:44

KCD

958
3
12
24

1

vote

2 answers

OpenSSH 5.3 setting UMASK for SFTP chroot env, dosen't work at all

I tried to override umask setting on SFTP connection in chrooted env. I couldnt use subsytem diffrente than internal-ftp. In OpenSSH_5.3p1 (Debian-3ubuntu4, OpenSSL 0.9.8k 25 Mar 2009) there's umask setting directly from command. How do you able to…

ssh sftp chroot

asked Apr 09 '11 at 14:45

emaaaa

23
1
4

1

vote

3 answers

sftp chrooted dosent work with some sftp client (Cyberduck)

I'm not able working on SFTP+chrooted env Using internal-sftp directive it works, but i'm not able to set umask. (ex umask 002) Using sftp-server from openssh package dosent't work because login shell for chrooted only user replay with /bin/false…

sftp file-transfer chroot

asked Apr 08 '11 at 15:11

emaaaa

23
1
4

1

vote

2 answers

FilZilla shows physical path of ftp folder, any workaround?

I am using vsftpd as ftp server on rhel 5. I published a folder using ftp and try to access that folder using ftp client FileZilla. The problem is that filezilla shows physical path of ftp folder. This can be a security concern. Please suggest me…

ftp chroot

asked Feb 15 '11 at 06:16

vnix27

886
2
11
19

1

vote

1 answer

Linux: Is it safe to have 100+ mounts to folders?

I am setting up a chrooted environment for users who request SFTP access, essentially their login directory must be /home/xxxx which is not accessible by public FTP, Would mounting each /home/xxx directory to /srv/ftp/~xxx, possible for a hundred…

linux ftp mount chroot

asked Jan 20 '11 at 08:33

Robert Renu.

81
1
4

1

vote

2 answers

vsftpd chroot_local_user does nothing

I'm setting up a vsftpd server on: Linux 2.6.32-26-server #48-Ubuntu SMP Wed Nov 24 10:28:32 UTC 2010 x86_64 GNU/Linux When I set chroot_local_user=YES, there is no effect (I can still see / when I log in). There is nothing in syslog or…

ubuntu ftp chroot vsftpd

asked Jan 03 '11 at 05:02

Reinderien

212
3
14

1

vote

2 answers

Starting an application that can't touch existing files

I have an application that I would like to start in a "visualized environment". I don't want this application to be able to write/read any files on my local file system. A bonus would be to be able to monitor everything this application does. The…

linux security virtual-machines chroot

asked Nov 21 '10 at 17:32

Maxim Veksler

2,725
10
28
32

1

vote

3 answers

How to allow passwd in chroot?

I have a multi-user server, which puts a subset of the users in a chroot. I want to allow all users to call passwd in order to change their respective password. Everything else I can think of is either overkill or likely to compromise…

chroot passwd

asked Oct 27 '10 at 01:26

bitmask

123
1
1
8

1

vote

1 answer

Is it possible to run dhcpd3 as non-root user in a chroot jail?

I would like to run dhcpd3 from a chroot jail on Debian Lenny. At the moment, I can run it as root from my jail. Now I want to do this as non-root user (as "-u blah -t /path/to/jail" Bind option). If I start my process like this : start-stop-daemon…

debian dhcp chroot jail

asked Sep 17 '10 at 22:17

Lenain

11
2

Questions tagged [chroot]