MySQL Forums
Forum List  »  Security

chroot documentation
Posted by: Jeffrey R
Date: October 10, 2007 05:58PM

MySQL's chroot implementation is very poorly documented, only a description is found @ http://dev.mysql.com/doc/refman/5.1/en/server-options.html#option_mysqld_chroot

I am trying to setup a robust system and all I have been able to find is the chroot variable and documentation dated back to 2003. All of the other documentation on the web seems to be OS dependent (debian or freebsd). Unfortunately this is can change with each MySQL release.

So I would like to ask someone with the knowledge setting up mysql in a chroot for a guidance of tasks that need to be setup, instead of a step-by-step tutorial, because it will be outdated before we know it.

Some of the setups I have understood are (correct me if I'm wrong please)

1) compile mysql using "--with-mysqld-ldflags=-all-static" (not sure if this is required)
2) setup chroot directories
3) move the standard mysql install to the chroot equivalent (/usr/local/ to /chroot/usr/local)
4) setup OS dependent files (stripped version of passwd, localtime, )
5) copy necessary lib's (get a list of required libs using "ldd mysqld")
6) setup variable "chroot" in my.cnf

I'm not sure if anything is missing, but i still feel that this should be confirmed and documented in the MySQL Docs.

Essentially the poor and outdated documentation has been giving me trouble and any assistance or clarification would be greatly appreciated.

--
Thank You,
Jeffrey R.

Options: ReplyQuote


Subject
Views
Written By
Posted
chroot documentation
8772
October 10, 2007 05:58PM


Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.