How to get php’s mail() function to work with mod_security chroot The problem is that php’s mail() cannt send mail in a mod_security chroot environment. Unfortunately, you don’t see any errors and the mail just never gets sent. Let’s assume that you have setup a chroot jail for apache using mod_security (something we will document… Continue reading php’s mail() in apache chroot

Objective: To chroot Apache using mod_security, harden PHP via basic security configurations, harden MySQL and allow our chroot’d Apache to connect to MySQL socket. MOD_SECURITY ModSecurity is an open source intrusion detection and prevention engine for web applications. Operating as an Apache Web server module, the purpose of ModSecurity is to increase web application security,… Continue reading Apache/PHP4/Mysql hardening techniques (including chroot)