I am new to switching to Linux with Linux.
I read about jail, the solution is great for server systems. So my idea for my web server was to create 3 prisons. One jail for mysql, one for nginx and one for php-fpm. Prisons should now communicate with each other. How to do it?
For IP? That would be a lot of overhead, but safe. Here is an example:
- CUSTOMER
- → TCP / IP → NGINX
- → TCP / IP → PHP-FPM
- → TCP / IP → MYSQL
- → TCP / IP → PHP-FPM
- → TCP / IP → NGINX
- → TCP / IP → CLIENT
From Sockets: This will be security los ..
- create directories in the main system
- create directories in prisons
- combine directories
What solution are you using? Or do you have better solutions?
source
share