Chroot Jail Services
Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or
Already have an account? Sign In »
Video Transcription
00:00
>> Hey there, Cybrarians.
00:00
Welcome back to the Linux plus course here at Cybrary.
00:00
I'm your instructor Rob Goelz
00:00
>> In today's lesson,
00:00
>> we're going to have a brief overview
00:00
of chroot jail services.
00:00
Upon completion of this lesson,
00:00
you're going to understand
00:00
the benefits of using a chroot jail for applications
00:00
>> and we're going to talk briefly
00:00
>> about the process of creating a chroot jail.
00:00
A chroot jail service is really just a service that has
00:00
been limited to a portion of
00:00
the file system that it can use.
00:00
This is done for a couple of reasons.
00:00
One reason may be that we'd want the service
00:00
>> to not modify or have access to critical data.
00:00
>> We may also want that service to not
00:00
be able to access another services data.
00:00
What the chroot actually does is create
00:00
a new root directory structure
00:00
for the application to run it.
00:00
It changes the route that
00:00
the application thinks it's using,
00:00
hence, chroot, change chroot.
00:00
Now, a new chroot or chroot jail
00:00
can be created with the format chroot,
00:00
the new root directory that you want to
00:00
use in the file system to the path
00:00
>> to where this chroot is going to be
00:00
>> and then the name of the service
00:00
that's going to live there.
00:00
After this is done, commands that run in that chroot,
00:00
in that chroot file system
00:00
>> will only reference files and directories
00:00
>> inside of this new root directory.
00:00
>> Remember that's the purpose of doing this.
00:00
We want to make sure that
00:00
>> it can't kind of break out of its jail.
00:00
>> It's jailed in fenced in file system and touch
00:00
other service data or
00:00
critical data we don't want it to have access to you.
00:00
But accordingly, the service or application thinks
00:00
>> it's running in the real file system.
00:00
>> It still needs any utilities or libraries
00:00
>> that it needs to function normally.
00:00
>> In order to make sure that
00:00
>> it continues to function normally,
00:00
>> that you're able to use the utility of your application
00:00
>> the way that it's supposed to be used,
00:00
>> you have to copy any utilities or libraries it needs
00:00
>> into the new root directory for the chroot.
00:00
>> With that, in this lesson,
00:00
we had a very brief overview of chroot
00:00
and chroot jail and we talked about the benefit,
00:00
the purpose of using chroot jail
00:00
for applications and services.
00:00
Then we talked briefly about
00:00
the process of creating a chroot jail
00:00
>> and making sure that we copy
00:00
>> in any utilities and binary files that we need
00:00
>> for that application
00:00
>> to continue running in that chroot.
00:00
Thanks so much for being here
00:00
>> and I look forward to seeing you in the next lesson.
Up Next
Instructed By
Similar Content
