Red Hat / CentOS: Chroot Apache 2 Web Server

Posted on in Categories Apache, Linux distribution, package management, RedHat/Fedora Linux, Security last updated December 27, 2008

A chroot on Red Hat / CentOS / Fedora Linux operating changes the apparent disk root directory for the Apache process and its children. Once this is done attacker or other php / perl / python scripts cannot access or name files outside that directory. This is called a “chroot jail” for Apache. You should never ever run a web server without jail. There should be privilege separation between web server and rest of the system.

In this exclusive series, you will learn more about:

  • Securing an Apache 2 web server under Red Hat Enterprise Linux / CentOS Linux using mod_chroot
  • Virtual hosting configuration
  • Troubleshooting Chrooted Apache jail problem.