Mailinglist Archive: opensuse-security (320 mails)

< Previous Next >
Re: SSH and CHROOT alternatives...
  • From: Sven Koch <haegar@xxxxxxxxx>
  • Date: Thu, 22 May 2003 18:46:26 +0200 (CEST)
  • Message-id: <Pine.LNX.4.50.0305221844570.11925-100000@xxxxxxxxxxxxxxxx>
On Thu, 22 May 2003 jonathanneto@xxxxxxxxxxx wrote:

> To access the home you could use a workaround
> mounting the homes with nfs and using iptables to allow only localhost to
> use nfs at all.

Instead of "loopback-nfs" there is now the better way of bind-mounts since
kernel 2.4.

mount --bind /home /chroot/home

This comes handy for anonymous-ftp-chroot's too:

mount --bind /bigspacewithfiles1 /usr/local/ftp/pub/1
mount --bind /bigspacewithfiles2 /usr/local/ftp/pub/2

c'ya
sven

--

The Internet treats censorship as a routing problem, and routes around it.
(John Gilmore on http://www.cygnus.com/~gnu/)

< Previous Next >
Follow Ups
References