This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Last revision Both sides next revision | ||
|
openbsd:shell [2020/03/06 03:37] jrmu |
openbsd:shell [2020/03/28 03:13] jrmu |
||
|---|---|---|---|
| Line 161: | Line 161: | ||
| # chmod -R o-rx /var/log | # chmod -R o-rx /var/log | ||
| # chmod o-rx /var/run/utmp | # chmod o-rx /var/run/utmp | ||
| + | # chmod o-r /var/log/wtmp* | ||
| </code> | </code> | ||
| Line 209: | Line 210: | ||
| In /etc/ssh/sshd_config, turn off X11 forwarding | In /etc/ssh/sshd_config, turn off X11 forwarding | ||
| + | |||
| + | Create symlinks for users so they don't complain: | ||
| + | |||
| + | <code> | ||
| + | ln -s /usr/local/bin/tclsh8.6 /usr/local/bin/tclsh | ||
| + | ln -s /usr/local/bin/python3.7 /usr/local/bin/python | ||
| + | </code> | ||
| + | |||
| + | You will want to have /var/www/etc/resolv.conf to allow DNS lookup inside the chroot: | ||
| + | |||
| + | <code> | ||
| + | # mkdir /var/www/etc/ | ||
| + | # cp /etc/resolv.conf /var/www/etc/ | ||
| + | # chown -R www:daemon /var/www/etc | ||
| + | </code> | ||