Re: Apache2 chroot /dev/null permission denied



Thanks for the help.
Doing what was asked I figured out and solved the problem.
Another administrator added the option nodev to the partition of the
chroot. Probably He did not umounted and mounted the partition after that
and the service did not stopped, when we restart the machine, the problem
appeared.

One question.
For security reasons, what the best mount options for the chroot partition?
nosuid I already have.
Is it advisable to have nodev on the chroot and mount another small
/chroot/dev partition (maybe ramdisk), without the nodev option containing
the null urandom and random devices?

Thanks again.

[ ]'s

On Thu, Mar 18, 2010 at 7:52 PM, Mike Bird <mgb-debian@xxxxxxxxxxxx> wrote:

On Wed March 17 2010 19:00:35 Knowledge Seeker wrote:
That is the problem.
The permission is set to 666 and the group is root.
But it still don't work.

Please post the exact complete error message, and
also the results of the following three commands run
as root as soon as possible after the error occurs:

# ls -dl /dev
drwxr-xr-x 22 root root 6280 2010-03-14 11:16 /dev
# ls -l /dev/null
crw-rw-rw- 1 root root 1, 3 2010-03-14 11:15 /dev/null
# su www-data -c 'ls -l /dev/null'
crw-rw-rw- 1 root root 1, 3 2010-03-14 11:15 /dev/null

Is there anything in your Apache config that might
be trying to chroot?

--Mike Bird


--
To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact
listmaster@xxxxxxxxxxxxxxxx
Archive:
http://lists.debian.org/201003181252.37677.mgb-debian@xxxxxxxxxxxx




--
Knoseeker


Relevant Pages

  • Re: HELP! cant become root
    ... Or, boot a rescue cd/environment such as knoppix, mount your root ... partition and do a chroot into there, do whatever needed to clean up. ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ...
    (Debian-User)
  • Re: HELP! cant become root
    ... partition and do a chroot into there, do whatever needed to clean up. ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ...
    (Debian-User)
  • Re: HELP! cant become root
    ... partition and do a chroot into there, do whatever needed to clean up. ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ...
    (Debian-User)
  • Re: Sarge and Athlon 64
    ... Most of the upgrading can be done from within the chroot, although occasionally I have to boot into the i386 partition for some packages that need /proc mounted in the install script. ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx with a subject of "unsubscribe". ...
    (Debian-User)
  • Re: Restoring old root partitions.
    ... >and chroot to it. ... Then you mount any others needed to support what ... >Now you're on your root partition. ... Check that and umount anything you'll need to remount ...
    (Debian-User)