Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Linux w/ Apache - Bind / chroot idea - need fast help!

Posted on 1999-06-29
6
Medium Priority
?
245 Views
Last Modified: 2010-04-20
I am running a dedicated web server w/ Linux & Apache.  I am trying to setup a way to give each IP address on my box their own minimal version of files such as httpd.conf, passwd, etc. so that each IP is for the MOST part, it's own entity, even if it shares the hard drive with 20 others.

My initial idea is to somehow bind each service to a single IP and have any login services chrooted before they check the passwd file.

Apache should be easily configurable by setting the BindAddress option in the httpd.conf to an IP.

I am looking for someone who can help me set this up pronto... If the points aren't enough, web hosting or website submission services are easily available for compensation....

Please contact via email if you have the time to help me set this up... I need something working right away!

Terrence R. Williams
Virtual Magic Technologies
0
Comment
Question by:thespis
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
6 Comments
 
LVL 4

Expert Comment

by:gunny051499
ID: 1634849
you recommand you not to set ANY webserver up with real logins! this is the worst security hole you may create.

as for logins it is not possible on a standard unix system to have what you'd like. it *could be* possible on bigger systems, which will let you run multiple os's (unix's).

i know of no case, where this would be usefull. perhaps if you could tell us what your intentions/requirements are, it would be easier to suggest other solutions.

if you want to let different *ftp-users* see only their homedirectory as root, this is possible, as you will know.

as for apache, you are right. you may either use BindAddress for multiple webservers or VirtualHost for a single webserver.
0
 

Author Comment

by:thespis
ID: 1634850
The goal is to let each IP'd host set their own httpd.conf, their own passwd, etc.  The application is web hosting.  We have a dedicated Linux box w/ 8GB hard drive.  To allow only 1 person on the entire hard drive to have the POP address "webmaster" would be entirely too hard to explain to customers who want things their way.

As for impossible, I don't believe that.  My previous host had a Linux box running in this fashion.  I had a set of system files in my partition.  There were no conflicts between myself and other groups on the hard drive.

I just don't know how they did it....
0
 
LVL 4

Expert Comment

by:gunny051499
ID: 1634851
well, if it is simply to set up the following:

- a web site for a customer
- guarantee this customer ftp access to, and only to, HIS web-files (without even seeing the others). this includes giving each a different login w/ password
- give each customer it's own "webmaster" (note: they must have different domains, ie. webmaster@customer1.com and webmaster@customer2.com)
- change everything so that the customer does not get in contact/confusion with others on the same system

this is what most webproviders (as we) do. this is not a problem and we (I) will tell you everything you need to do. but as for the point to give each user "it's own passwd and system files" it is not possible on a "standard" unix system. i'm not talking about it to be impossible (even if there is still no reason to do so).
0
Back Up Your Microsoft Windows Server®

Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

 
LVL 4

Expert Comment

by:gunny051499
ID: 1634852
if you want to set up multiple hosts like

www.customer1.com
www.customer2.com
...

on the same machine, along with

webmaster@customer1.com
webmaster@customer2.com
...

there is no problem
0
 

Expert Comment

by:Shockwave
ID: 1634853
Well, I think I can see the utility in doing this...the howto may be a bit more difficult though.  A wrapper for telnet (or whatever else you allow them to login with) that checks the incoming IP address and does the chroot before actually handing the connection over to the requested daemon might work.  Might be able to run multiple chrooted Apaches too...this would allow individual configurations...
0
 

Accepted Solution

by:
lavatech earned 600 total points
ID: 1634854
This has been done before and is well documented in the Virtual Services HOW-TO, including set up and configuration for most network services.

You can find the latest version of the HOW-TO's at:

       ftp://sunsite.unc.edu/pub/Linux/docs/HOWTO
or
       ftp://tsx-11.mit.edu/pub/linux/docs/HOWTO
0

Featured Post

Survive A High-Traffic Event with Percona

Your application or website rely on your database to deliver information about products and services to your customers. You can’t afford to have your database lose performance, lose availability or become unresponsive – even for just a few minutes.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction We as admins face situation where we need to redirect websites to another. This may be required as a part of an upgrade keeping the old URL but website should be served from new URL. This document would brief you on different ways ca…
The purpose of this article is to demonstrate how we can upgrade Python from version 2.7.6 to Python 2.7.10 on the Linux Mint operating system. I am using an Oracle Virtual Box where I have installed Linux Mint operating system version 17.2. Once yo…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial
Suggested Courses

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question