[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Jailkit-users] Run apache/tomcat process from a jailed user accoun
|
From: |
Tanveer Chowdhury |
|
Subject: |
Re: [Jailkit-users] Run apache/tomcat process from a jailed user account |
|
Date: |
Thu, 4 Jun 2009 06:07:22 +0600 |
Great. Can I do this around?
Like I put apache & tomcat server both inside jail. Then can the
jailuser control those processes which will be under seperate jail
users like daemon and tomcat?
On Thu, Jun 4, 2009 at 2:03 AM, Olivier
Sessink<address@hidden> wrote:
> Tanveer Chowdhury wrote:
>> Thanks for your reply.
>> Apache is run as daemon and which is outside the jail and run using
>> /etc/init.d/httpd.
>>
>> Now please help me on how to run this apache using the jail user.
>> I tried with sudo but it says this:
>> sudo: unable to initialize PAM: No such file or directory
>
> 1) a user inside a jail cannot control a process outside the jail. It
> can be used to escape the jail, so why then use a jail after all?
> Perhaps two different users suit your needs?
>
> 2) sudo inside a jail is tricky, it needs a lot. For example all pam
> libraries and subsystems. I wouldn't recommend to do it unless you're
> experienced with chroot jails.
>
> regards,
> Olivier
>
>
> _______________________________________________
> Jailkit-users mailing list
> address@hidden
> http://lists.nongnu.org/mailman/listinfo/jailkit-users
>