[gentoo-server] apache chroot

public inbox for gentoo-server@lists.gentoo.org
 help / color / mirror / Atom feed

* [gentoo-server] apache chroot
@ 2006-08-28 11:22 Donatas
  2006-08-28 19:02 ` Robert Welz
  2006-09-01  7:48 ` [gentoo-server] gcc 4.1.1 and glibc 2.4 on amd64 Tomek Lutelmowski
  0 siblings, 2 replies; 4+ messages in thread
From: Donatas @ 2006-08-28 11:22 UTC (permalink / raw
  To: gentoo-server

Hi,

I'm trying to make mod_cheroot work with apache2.

# mkdir -p /var/www/localhost/htdocs/var/run
# chown -R root.root /var/www/localhost/htdocs/var/run
# ln -s /var/www/localhost/htdocs/var/run/apache2.pid /var/run/apache2.pid



the main features of httpd.conf:

PidFile /var/run/apache2.pid
ChrootDir /var/www/localhost/htdocs
DocumentRoot /

<Directory />
     AllowOverride None
     Options MultiViews FollowSymLinks
#   <IfModule mod_access.c>
#   Order allow,deny
#   Allow from all
#   </IfModule>
     <Limit GET OPTIONS>
       Order allow,deny
       Allow from all
     </Limit>
     <LimitExcept GET OPTIONS>
       Order deny,allow
       Deny from all
     </LimitExcept>
</Directory>




/etc/apache2/modules.d/15_mod_chroot.conf:

<IfDefine CHROOT>
         LoadModule chroot_module modules/mod_chroot.so
</IfDefine>

<IfModule mod_chroot.c>
         # change this to the web root
         ChrootDir /var/www/localhost/htdocs
</IfModule>


/etc/conf.d/apache2

APACHE2_OPTS="-D USERDIR -D DEFAULT_VHOST -D PHP5 -D SSL -D 
SSL_DEFAULT_VHOST -D CHROOT"



After this chroot methot, apache2 starts, but pages cannot be shown. 
Time-out.
This happens, when -D CHROOT is added to /etc/conf.d/apache2


What's the problem? Maby somebody has working mod_chroot?
-- 
gentoo-server@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: [gentoo-server] apache chroot
  2006-08-28 11:22 [gentoo-server] apache chroot Donatas
@ 2006-08-28 19:02 ` Robert Welz
  2006-09-01  7:48 ` [gentoo-server] gcc 4.1.1 and glibc 2.4 on amd64 Tomek Lutelmowski
  1 sibling, 0 replies; 4+ messages in thread
From: Robert Welz @ 2006-08-28 19:02 UTC (permalink / raw
  To: gentoo-server

Donatas wrote:
> Hi,
> 
> I'm trying to make mod_cheroot work with apache2.
> 
> # mkdir -p /var/www/localhost/htdocs/var/run
> # chown -R root.root /var/www/localhost/htdocs/var/run
> # ln -s /var/www/localhost/htdocs/var/run/apache2.pid /var/run/apache2.pid
> 
> 
> 
> the main features of httpd.conf:
> 
> PidFile /var/run/apache2.pid
> ChrootDir /var/www/localhost/htdocs
> DocumentRoot /
> 
> <Directory />
>     AllowOverride None
>     Options MultiViews FollowSymLinks
> #   <IfModule mod_access.c>
> #   Order allow,deny
> #   Allow from all
> #   </IfModule>
>     <Limit GET OPTIONS>
>       Order allow,deny
>       Allow from all
>     </Limit>
>     <LimitExcept GET OPTIONS>
>       Order deny,allow
>       Deny from all
>     </LimitExcept>
> </Directory>
> 
> 
> 
> 
> /etc/apache2/modules.d/15_mod_chroot.conf:
> 
> <IfDefine CHROOT>
>         LoadModule chroot_module modules/mod_chroot.so
> </IfDefine>
> 
> <IfModule mod_chroot.c>
>         # change this to the web root
>         ChrootDir /var/www/localhost/htdocs
> </IfModule>
> 
> 
> /etc/conf.d/apache2
> 
> APACHE2_OPTS="-D USERDIR -D DEFAULT_VHOST -D PHP5 -D SSL -D 
> SSL_DEFAULT_VHOST -D CHROOT"
> 
> 
> 
> After this chroot methot, apache2 starts, but pages cannot be shown. 
> Time-out.
> This happens, when -D CHROOT is added to /etc/conf.d/apache2
> 
> 
> What's the problem? Maby somebody has working mod_chroot?


mine works:
less modules.d/15_mod_chroot.conf:

<IfDefine CHROOT>
         LoadModule chroot_module modules/mod_chroot.so
</IfDefine>

<IfModule mod_chroot.c>
         # change this to the web root
         ChrootDir /var/www
</IfModule>

and /etc/apache2/vhosts.d/00_default_vhost.conf:
<IfDefine DEFAULT_VHOST>
<VirtualHost *:80>
     #
     # DocumentRoot: The directory out of which you will serve your
     # documents. By default, all requests are taken from this 
directory, but
     # symbolic links and aliases may be used to point to other locations.
     #
     DocumentRoot "/localhost/htdocs"

     #
     # This should be changed to whatever you set DocumentRoot to.
     #
     <Directory "/localhost/htdocs">

         #
         # Possible values for the Options directive are "None", "All",
         # or any combination of:
         #   Indexes Includes FollowSymLinks SymLinksifOwnerMatch 
ExecCGI MultiViews
         #

There are several directories under /var/www which might be needed if 
you use php or locales or date and time...

You find it with google or at the mod_php homepage.

Robert
-- 
gentoo-server@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 4+ messages in thread

* [gentoo-server] gcc 4.1.1 and glibc 2.4 on amd64
  2006-08-28 11:22 [gentoo-server] apache chroot Donatas
  2006-08-28 19:02 ` Robert Welz
@ 2006-09-01  7:48 ` Tomek Lutelmowski
  2006-09-01 10:29   ` Patrick Lauer
  1 sibling, 1 reply; 4+ messages in thread
From: Tomek Lutelmowski @ 2006-09-01  7:48 UTC (permalink / raw
  To: gentoo-server

Hello,

I would like to upgrade my gentoo production server (AMD64 2006.1/no-multilib 
profile, hardened kernel,gcc and glibc). Do you have any issues regarding 
this upgrade on AMD64 platform? What should I upgrade first - GCC or GLIBC? 
If something goes wrong, quickpkg & emerge of gcc and glibc would help? 

Regards,
Tomek
-- 
gentoo-server@gentoo.org mailing list

^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: [gentoo-server] gcc 4.1.1 and glibc 2.4 on amd64
  2006-09-01  7:48 ` [gentoo-server] gcc 4.1.1 and glibc 2.4 on amd64 Tomek Lutelmowski
@ 2006-09-01 10:29   ` Patrick Lauer
  0 siblings, 0 replies; 4+ messages in thread
From: Patrick Lauer @ 2006-09-01 10:29 UTC (permalink / raw
  To: gentoo-server

[-- Attachment #1: Type: text/plain, Size: 1071 bytes --]

On Fri, 2006-09-01 at 09:48 +0200, Tomek Lutelmowski wrote:
> Hello,
> 
> I would like to upgrade my gentoo production server (AMD64 2006.1/no-multilib 
> profile, hardened kernel,gcc and glibc). Do you have any issues regarding 
> this upgrade on AMD64 platform? 
No, that should just work. 

> What should I upgrade first - GCC or GLIBC? 
I think upgrading GCC first is better as that is what the dependencies
suggest (unless I'm still asleep and mixing up things again ;-) )

> If something goes wrong, quickpkg & emerge of gcc and glibc would help? 
Depends - I'd expect glibc to not compile or just work, broken installed
glibc is rather unlikely.
I have just done the same upgrade, even emerge -e world is running well
(and almost finished)

If it really is a production server that can't have downtime you should
test all updates on a second machine that has the exact same software
configuration, that way only your test box dies if anything ever goes
wrong.

Good luck,

Patrick
-- 
Stand still, and let the rest of the universe move

[-- Attachment #2: This is a digitally signed message part --]
[-- Type: application/pgp-signature, Size: 198 bytes --]

^ permalink raw reply	[flat|nested] 4+ messages in thread

end of thread, other threads:[~2006-09-01 10:31 UTC | newest]

Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-08-28 11:22 [gentoo-server] apache chroot Donatas
2006-08-28 19:02 ` Robert Welz
2006-09-01  7:48 ` [gentoo-server] gcc 4.1.1 and glibc 2.4 on amd64 Tomek Lutelmowski
2006-09-01 10:29   ` Patrick Lauer

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox