https://community.hpe.com/t5/operating-system-linux/chroot-bind-squid-sendmail-and-httpd/m-p/3479231#M86748 Hi,<BR /><BR />Have you tried Bastille Linux ?<BR /><BR /> <A href="http://www.bastille-linux.org" target="_blank">www.bastille-linux.org</A><BR /><BR />It is a set of perl scripts that helps enhancing OS security. Few years ago I used it sucessfully to chroot BIND services, and I guess it can be helpful on other TCP/IP services.<BR /><BR />Good luck.<BR />Kodjo Sat, 05 Feb 2005 17:26:58 GMT Kodjo Agbenu 2005-02-05T17:26:58Z https://community.hpe.com/t5/operating-system-linux/chroot-bind-squid-sendmail-and-httpd/m-p/3479230#M86747 Hello Dear Gurus<BR /><BR />OS: rhl9 and FC2<BR /><BR />bind, sendmail, apache and squid are running. I have to improve security by implementing chrooted environment for the above mentioned servers(bind, sendmail, squid and apache).<BR /><BR />So i want to know that is there any rpm which by default installed the above mentioned servers in chrooted mode/environment ? or should i have to do some configuration to configure/run the servers in chrooted environment ?<BR /><BR />Any help will be highly appreciated ;)<BR /><BR />Thanks in adv.<BR /><BR />Regards<BR />Maaz<BR /> Sat, 05 Feb 2005 12:59:43 GMT https://community.hpe.com/t5/operating-system-linux/chroot-bind-squid-sendmail-and-httpd/m-p/3479230#M86747 Maaz 2005-02-05T12:59:43Z https://community.hpe.com/t5/operating-system-linux/chroot-bind-squid-sendmail-and-httpd/m-p/3479231#M86748 Hi,<BR /><BR />Have you tried Bastille Linux ?<BR /><BR /> <A href="http://www.bastille-linux.org" target="_blank">www.bastille-linux.org</A><BR /><BR />It is a set of perl scripts that helps enhancing OS security. Few years ago I used it sucessfully to chroot BIND services, and I guess it can be helpful on other TCP/IP services.<BR /><BR />Good luck.<BR />Kodjo Sat, 05 Feb 2005 17:26:58 GMT https://community.hpe.com/t5/operating-system-linux/chroot-bind-squid-sendmail-and-httpd/m-p/3479231#M86748 Kodjo Agbenu 2005-02-05T17:26:58Z https://community.hpe.com/t5/operating-system-linux/chroot-bind-squid-sendmail-and-httpd/m-p/3479232#M86749 Fedora Core 3 runs BIND out of the box in a chroot jail. You might want to consider and upgrade if your hardware is supported.<BR /><BR />sendmail security can be improved with procedures available at <A href="http://www.sendmail.org," target="_blank">http://www.sendmail.org,</A> but it can not specifically be run in a chroot jail, as far as I know.<BR /><BR />ftp and apache can be partially configured for jail by Bastille Linux. In both cases there will be manual steps for you to perform, left in a todo file.<BR /><BR />SEP Sat, 05 Feb 2005 19:35:32 GMT https://community.hpe.com/t5/operating-system-linux/chroot-bind-squid-sendmail-and-httpd/m-p/3479232#M86749 Steven E. Protter 2005-02-05T19:35:32Z https://community.hpe.com/t5/operating-system-linux/chroot-bind-squid-sendmail-and-httpd/m-p/3479233#M86750 Dear Kodjo Agbenu and SEP, I m highly thankful to u for the support/help.<BR /><BR />I have assigned points... because I know that u people provide always the BEST/PERFECT help.<BR /><BR />Yet I havent check the Bastille Linux... because I m bussy doing some other important tasks. But I m going to check it so soon, might be in a 1 or 2 days.<BR /><BR />Still... Any Suggestions/help/assistance will be highly appreciated.<BR /><BR />Regards<BR />Mazz<BR /> Sun, 06 Feb 2005 09:22:52 GMT https://community.hpe.com/t5/operating-system-linux/chroot-bind-squid-sendmail-and-httpd/m-p/3479233#M86750 Maaz 2005-02-06T09:22:52Z