Chroot jails made simpler

jk_uchroot

jk_uchroot sets up users of the main system who can use the chroot. The list of users and which chroots they can use is kept in /etc/jailkit/jk_uchroot.ini. Some sample entries include:

[jwl]
allowed_jails = /srv/johnjail, /srv/commonjail
skip_injail_passwd_check = 1
[group users]
allowed_jails = /srv/commonjail
skip_injail_passwd_check = 1

Notice the optional last line in each entry that skips the password check.

jk_user

Use this utility to move an existing user account into a chroot. If the --move (-m) option is used, the user's entire home directory is placed in the chroot's directory /home/USER. The user will no longer have access to the main system.

jk_procmailwrapper

Not all chroots require email. For those that do, jk_procmailwrapper runs procmail. For users with access to the main system, it provides access to their normal .procmailrc file. If procmail is installed within the chroot, jailed users can use the .procmailrc in their home directory in the chroot.

Buy this article as PDF

Express-Checkout as PDF
Price $2.95
(incl. VAT)

Buy Linux Magazine

SINGLE ISSUES
 
SUBSCRIPTIONS
 
TABLET & SMARTPHONE APPS
Get it on Google Play

US / Canada

Get it on Google Play

UK / Australia

Related content

  • Command Line: Debootstrap

    We provide basic instructions for using Debian's debootstrap to create a schroot jail for building and testing packages.

  • Sandboxing

     

  • UCK

    We’ll show you how to create a custom Ubuntu ISO with the Ubuntu Customization Kit.

  • dgamelaunch

    If you are into retrogaming, dgamelaunch lets you set up a server to play Roguelike games and compete with friends, all while preserving a piece of gaming history.

  • Kernel News

    Chronicler Zack Brown reports on the latest news, views, dilemmas, and developments within the Linux kernel community.

comments powered by Disqus

Direct Download

Read full article as PDF:

Price $2.95

News