{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 该账号已被封号 的问题《Call chroot in PHP》','https://www.manongdao.com/q-996068.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
For security reasons, some applications are isolated in a chroot environment. I need to call this applications through a PHP script. Something like that :
exec('chroot /path/to/chroot command')
I need to be root for using chroot. There is a chroot() in the PHP manual but this function also requires root privileges.
So, how to use chrooted commands in PHP?
The trick here is to use sudo and the sudoers file see the sudo manpage.
Basically what you would do is give your PHP user access to the
sudoutility for thechrootcommand and your code will be like this:chrootcan only be called by privileged users. Otherwise, normal users could trick setuid applications such aspasswdorsudointo accessing files in an unexpected location.Therefore, if your php application is not running as root, the one thing you can do is set up a setuid wrapper script and call that from php. It should promptly drop privileges after calling chroot, as root can trivially break out of chroots.
Alternatively, you can configure sudo to allow the php user to execute
chroot /path/to/chroot commandand prependsudoto theexeccall in php.You can use Linux Capabilities. See CAP_SYS_CHROOT capability on
man capabilities.WARNING! By using sudo, after chrooting you are root!