Thomas Haunhorst wrote:
> On Fri, 11 Jul 2003 20:58:30 +0200, Bulba007 <bulba007@wp.pl> wrote:
>
>>Which files must I copy to chroot jail env. to run all perl and php scripts?
>
>
>
> With ldd you can find out which libs are needed. ldd perl, ldd php.
>
>
> Thomas.

To me this page was very helpfull for getting it up and running

http://penguin.epfl.ch/chroot.html#h3-perl

It involved steps you wouldn't get with just the help of ldd, such as
'mknod -m 666 dev/null c 1 3', where dev is actually /var/www/dev.

Niels

On Fri, 5 Sep 2003, Niels Veltman wrote:

> To me this page was very helpfull for getting it up and running
>
> http://penguin.epfl.ch/chroot.html#h3-perl
>
> It involved steps you wouldn't get with just the help of ldd, such as
> 'mknod -m 666 dev/null c 1 3', where dev is actually /var/www/dev.

1. you don't always need devices in chroot.
2. /var is mounted nodev by default.
3. those are the wrong numbers. for i386 openbsd use 2 2.


--
"I am clearly more popular than Reagan. I am in my third term.
Where's Reagan? Gone after two! Defeated by George Bush and
Michael Dukakis no less."
- M. Barry, Mayor of Washington, DC

Ted Unangst wrote:
> On Fri, 5 Sep 2003, Niels Veltman wrote:
>
>
>>To me this page was very helpfull for getting it up and running
>>
>>http://penguin.epfl.ch/chroot.html#h3-perl
>>
>>It involved steps you wouldn't get with just the help of ldd, such as
>>'mknod -m 666 dev/null c 1 3', where dev is actually /var/www/dev.
>
>
> 1. you don't always need devices in chroot.
> 2. /var is mounted nodev by default.
> 3. those are the wrong numbers. for i386 openbsd use 2 2.
>
>

Made my recheck this and he is completely right. For the stuff I was
using Perl I can just completely remove /var/www/dev. No problem, same
functionality!
No wonder that an erronous null node made no difference.

Thanks Ted!

I now feel a strong urge to double check all the other steps from the
side above. I guess I should be more carefull with 'recipies' for other
OS's.

Niels