A chroot on Red Hat / CentOS / Fedora Linux operating changes the apparent disk root directory for the Apache process and its children. Once this is done attacker or other php / perl / python scripts cannot access or name files outside that directory. This is called a “chroot jail” for Apache. You should never ever run a web server without jail. There should be privilege separation between web server and rest of the system.
In this exclusive series, you will learn more about:
- Securing an Apache 2 web server under Red Hat Enterprise Linux / CentOS Linux using mod_chroot
- Virtual hosting configuration
- Troubleshooting Chrooted Apache jail problem.
Ubuntu Linux 8.10 release candidate beta version has been released and available for download from mirrors. The final stable version will be released on October 30th, 2008. But, if you would like to test latest version try out Intrepid Ibex RC beta version.
Wikipedia is ditching out a mix of Red Hat and Fedora for Ubuntu Linux. Wikipedia has 10 million articles in 250 languages and it is one of the 10 most visited websites in the world.
I’m a devoted Firefox user like most of you. However, at work I use Internet Explorer for couple of web applications that works only on IE. Wouldn’t it be nice to embed Internet Explorer inside Firefox as a tab to browse the websites that works only on IE? This is exactly what Firefox add-on IE Tab does as explained below.
This is a great tool for web developers, since you can easily see how your web page displayed in IE with just one click and then switch back to Firefox.
Red Hat issued an update version of Linux operating system core called kernel that plugs various security holes for RHEL 5.x. This update has been rated as having important security impact. All users are advised to upgrade kernel package.
Perl version supplied with RHEL has bug, which will result code running at least 100 times slower than expected speed. Now, Red Hat updated perl packages that fix a performance issue. Earlier only solution was installing your own perl under /usr/local or other location. This fix will now take care of performance penalty.
Debian Linux project released the Openssh security updates for computers powered by its Debian Linux operating systems. It has been discovered that the signal handler implementing the login timeout in Debian’s version of the OpenSSH server uses functions which are not async-signal-safe, leading to a denial of service vulnerability.