Server Help :: View topic - having issues chrooting

Server Help

ASSS Questions - having issues chrooting

all_shall_perish - Thu Jul 26, 2007 10:32 pm
Post subject: having issues chrooting

i've tried chrooting asss multiple ways, both using the --chroot flag, and also just using the chroot command. if i do use the chroot command i end up getting it to chroot, but it won't daemonize as i have also passed that flag

this is what i'm trying

Quote:

./run-asss
*** chroot enabled
*** asss started
asss 1.4.3 built at Jun 8 2006 23:34:16
can't chroot to '.': Operation not permitted
Unrecoverable error (6): error changing root directory or dropping privileges

EDIT: i'm not sure why i posted this in asss custom project, feel free to move to the correct forum, sorry and thanks.

Doc Flabby - Sun Jul 29, 2007 5:56 am
Post subject:

I would recommend not chrooting and instead running asss using an unprivelaged user.

all_shall_perish - Sun Jul 29, 2007 4:30 pm
Post subject:

that'll work too i suppose, thanks for your help.

CypherJF - Sun Jul 29, 2007 4:55 pm
Post subject:

Ew, why? I'd recommend all server software be run under specific users which don't have unauthorized access to any other part of the system... especially with asss where you have the ability to put/del/get files.

Dr Brain - Sun Jul 29, 2007 11:18 pm
Post subject:

Problem with chrooting asss is that it's tricky to get perfect, and anything less is worthless. Chroot will only stop someone who knows exactly what they're doing from compromising a slightly insecure setup. If you've got an insecure setup, it's better to devote your time to fixing it rather than perfecting your chroot jail.

Grelminar - Tue Jul 31, 2007 12:53 am
Post subject:

I wouldn't say it's worthless. Chroot won't solve all your problems, but it adds another layer of security, just like running as different users does. I would recommend doing both.