Jak na jailovani loadbalanceru - nginx, haproxy?

Miroslav Lachman 000.fbsd at quip.cz
Thu Oct 15 22:23:01 CEST 2015

Previous message: Jak na jailovani loadbalanceru - nginx, haproxy?
Next message: Jak na jailovani loadbalanceru - nginx, haproxy?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Gabriel wrote on 10/15/2015 21:02:

> Ale nginx a haproxy porad nevim, jestli strcit do jailu, nebo nechat venku. Predpokladam, ze by to nemel byt zadny problem dat to do jailu.

Otazkou je, proc to chces davat do jailu / cemu se tim snazis zabranit. 
Pak se teprve da rozhodovat, jestli to do jailu davat, nebo ne. Co se 
Nginx tyce, tak tam by nemel byt zadny problem, mit ho v jailu. (mam v 
Jailu Nginx, Apache i Lighttpd) Obecne se da v jailu provozovat temer 
cokoliv, pokud to nepotrebuje pristup k nejakym zarizenim v /dev/, ktera 
normalne v jailu nejsou (z bezpecnostnich duvodu). Obcas jeste muze byt 
problem s nejakym SysV IPC, ale i to se da v jailu povolit a provozovat 
(treba PotgreSQL, Firebird atd.)

> Urcite chci v jailu alespon ssh pristup na ten server.

Tomuhle nejak nerozumim. Chces si do jailu dat SSHd a z neho spravovat 
hostitelsky system?

Mirek

Previous message: Jak na jailovani loadbalanceru - nginx, haproxy?
Next message: Jak na jailovani loadbalanceru - nginx, haproxy?
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users-l mailing list