On Wednesday 02 October 2002 00:03, Sam Varshavchik wrote:
Steve Shockley writes:
Recently, OpenBSD has changed Apache to run chroot /var/www. Before I
spend hours tracing it out, what's the feasibility of getting either
webmail or webadmin to run in a chroot?
0% possibility of success. How exactly are you plainning to have the
chrooted webmail binary read maildirs outside of the chroot jail?
Wouldn't it be possible to have a home directory in the new root which
would be a like to the real /home?
1) You move all the necessary dynamic libraries into the chroot jail
2) You move all the mail accounts into chroot jail
3) Since sending mail involves running a small shell script stub, you'll
need to move at least /bin/sh into the chroot jail too
4) What you end up in your chroot jail isn't much different than what
outside of the chroot jail looks like,
what exactly was the point to this chroot jail in the first place?