Joined: Jun 16, 2003 Posts: 10952 Location: California, USA
Posted: Tue Sep 01, 2009 10:10 pm Post subject: Security upgrade to Trinity, NeoWiki, and Bugzilla
I have just finished upgrading the configuration of our Trinity, NeoWiki, and Bugzilla webserver configurations so that these web applications are running in their own "chroot jail".
Over the last week I have been working through each of our web web applications and isolating the web applications into separate groups. By putting each group in its own "chroot jail", any web code within a group cannot read outside of its web directory. This is a major protection strategy should any of our websites get hacked. By isolating each group, the attacker cannot use, for example, a security holes in our Trinity or Bugzilla applications to gain access to our NeoOffice Mobile website.
Implementing this level of security is very time consuming but we take security very seriously and with the release of NeoOffice Mobile later this month, we want to be as prepared as possible.
You should not see any breakage in our web applications. However, if you find that automatic mail is no longer working, please let me know as I had to convert Trinity's mail code in several different locations in the code to work inside a chroot jail.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum You cannot attach files in this forum You cannot download files in this forum