3490
Comment: Sync between French and English versions. Rough translation, will need cleanup.
|
3379
|
Deletions are marked like this. | Additions are marked like this. |
Line 4: | Line 4: |
'''chroot''' on Unix operating systems is an operation that changes the apparent root directory for the current running process and its children.''([[WikiPedia: en: chroot | Read more ...]])'' | '''chroot''' on Unix-like operating systems is an operation that changes the apparent root directory for the current running process and its children.''([[WikiPedia: en: chroot | Read more ...]])'' |
Line 9: | Line 9: |
Build a "chroot" is very easy in Debian. | Building a "chroot" is very easy in Debian. |
Line 19: | Line 19: |
mkdir-p / var / chroot / etch | mkdir -p /var/chroot/etch |
Line 24: | Line 24: |
debootstrap - arch i386 etch / var / chroot / etch | debootstrap - arch i386 etch /var/chroot/etch |
Line 31: | Line 31: |
chroot / var / chroot / etch | chroot /var/chroot/etch |
Line 35: | Line 35: |
In general, it is necessary to create / edit key configuration points | In general, it is necessary to create/edit key configuration points |
Line 41: | Line 41: |
/ Etc / passwd / Etc / groups |
/etc/passwd /etc/groups |
Line 47: | Line 47: |
/ Etc / hosts / Etc / resolv.conf |
/etc/hosts /etc/resolv.conf |
Line 53: | Line 53: |
/ Etc / fstab | /etc/fstab |
Line 58: | Line 58: |
=== / Proc === * Check the chrooted system the presence of / proc if the chroot is not likely to be fully operational. A priori, since version debootstrap Debian / Etch integrates natively mount / proc and / sys |
=== /proc === * Check the chrooted system the presence of /proc if the chroot is not likely to be fully operational. A priori, since version debootstrap Debian/Etch integrates natively mount /proc and /sys |
Line 61: | Line 61: |
proc on / proc type proc (rw) sysfs on / sys sysfs kind (rw) |
proc on /proc type proc (rw) sysfs on /sys sysfs kind (rw) |
Line 65: | Line 65: |
=== / Dev / pts === | === /dev/pts === |
Line 67: | Line 67: |
* It is also advisable to do a "bind" / dev / pts. This prevents error messages like {{{Must be connected to a terminal}}} or {{{Can not access '/ dev/pts/0': No such file or directory of this type}}} with using the control debpkg: screen. | * It is also advisable to do a "bind" /dev/pts. This prevents error messages like {{{Must be connected to a terminal}}} or {{{Can not access '/dev/pts/0': No such file or directory of this type}}} with using the control debpkg: screen. |
Line 71: | Line 71: |
mount - bind / dev / pts / var / chroot / etch / dev / pts | mount --bind /dev/pts /var/chroot/etch/dev/pts |
Line 79: | Line 79: |
# Cat / etc / fstab | grep chroot / Dev / var / chroot / etch / dev auto bind 0 0 / Dev / pts / var / chroot / etch / dev / pts auto bind 0 0 / Proc / var / chroot / etch / proc auto bind 0 0 |
# cat /etc/fstab | grep chroot /dev /var/chroot/etch/dev auto bind 0 0 /dev/pts /var/chroot/etch/dev/pts auto bind 0 0 /proc /var/chroot/etch/proc auto bind 0 0 |
Line 87: | Line 87: |
# Mount | grep chroot / Dev on / var / chroot / etch / dev-type none (rw, bind) / Dev / pts on / var / chroot / etch / dev / pts kind none (rw, bind) / Proc on / var / chroot / etch / proc type none (rw, bind) |
# mount | grep chroot /dev on /var/chroot/etch/dev -type none (rw, bind) /dev/pts on /var/chroot/etch/dev/pts kind none (rw, bind) /proc on /var/chroot/etch/proc type none (rw, bind) |
Line 97: | Line 97: |
aptitude install deborphan | apt-get install deborphan |
Line 105: | Line 105: |
aptitude remove - purge telnet manpages pppconfig ipchains ... | apt-get remove - purge telnet manpages pppconfig ipchains ... |
Line 112: | Line 112: |
sudo aptitude install emacs21 local mc | sudo apt-get install emacs21 local mc |
Translation(s): Deutsch - English - Français - Italiano - Español
chroot on Unix-like operating systems is an operation that changes the apparent root directory for the current running process and its children.(Read more ...)
Basic Installation
Building a "chroot" is very easy in Debian.
You will need:
- Install the required packages
aptitude install binutils debootstrap
- Choose a location
mkdir -p /var/chroot/etch
- Build the chroot
debootstrap - arch i386 etch /var/chroot/etch
- Recovery of an "image", decompression and installation of required packages
- To enter:
chroot /var/chroot/etch
Configuration
In general, it is necessary to create/edit key configuration points
Configuring a chroot is relatively static and very specific, it may be possible to dispense with the command "top-level" and directly edit files.
- Users defined in the chroot
/etc/passwd /etc/groups
- Settings network settings
/etc/hosts /etc/resolv.conf
- Mounts filesystems
/etc/fstab
Mounting pseudo filesystems
/proc
- Check the chrooted system the presence of /proc if the chroot is not likely to be fully operational. A priori, since version debootstrap Debian/Etch integrates natively mount /proc and /sys
proc on /proc type proc (rw) sysfs on /sys sysfs kind (rw)
/dev/pts
It is also advisable to do a "bind" /dev/pts. This prevents error messages like Must be connected to a terminal or Can not access '/dev/pts/0': No such file or directory of this type with using the control debpkg: screen.
In this case, the primary system, run the command:
mount --bind /dev/pts /var/chroot/etch/dev/pts
Default Configurations
Generally the file /etc/fstab might look like this:
# cat /etc/fstab | grep chroot /dev /var/chroot/etch/dev auto bind 0 0 /dev/pts /var/chroot/etch/dev/pts auto bind 0 0 /proc /var/chroot/etch/proc auto bind 0 0
Therefore mount on the primary system would be:
# mount | grep chroot /dev on /var/chroot/etch/dev -type none (rw, bind) /dev/pts on /var/chroot/etch/dev/pts kind none (rw, bind) /proc on /var/chroot/etch/proc type none (rw, bind)
Adding / removing packages
- Eliminate unnecessary packages (all depends on the purpose of the chroot)
apt-get install deborphan
deborphan-a
- And for example
apt-get remove - purge telnet manpages pppconfig ipchains ...
Complementary list svgalibg1 whiptail
- Add a little comfort
sudo apt-get install emacs21 local mc
Usage
Common examples of chroot usage:
Recompiling application in a context other than the machine that hosts the chroot (backport, cross-compiling, ...)
- Update service production by tilting the old service (host machine) to the new (installed in the chroot)
- Securing a service "chrooted" from the host machine (and vice versa)
ToDo - Clean up from French translation.