Date: Thu, 1 Apr 2004 00:47:28 -0800 From: Kris Kennaway <kris@obsecurity.org> To: Mark <admin@asarian-host.net> Cc: freebsd-questions@freebsd.org Subject: Re: chroot or jail? Message-ID: <20040401084727.GA64863@xor.obsecurity.org> In-Reply-To: <200404010802.I31823VU058374@asarian-host.net> References: <200404010802.I31823VU058374@asarian-host.net>
next in thread | previous in thread | raw e-mail | index | archive | help
--u3/rZRmxL6MmkK24 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Apr 01, 2004 at 08:02:04AM +0000, Mark wrote: > Hello, >=20 > I am setting up a new Apache 1.3.29; and I was wondering, should I use ja= il > or chroot to secure it? I know root can potentially break out of chroot. = But > what about jail? (FreeBSD 4.9R-p3). Can you break out of a jail? No [1], that's the point :) Kris [1] Modulo any implementation bugs, of course. --u3/rZRmxL6MmkK24 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFAa9cfWry0BWjoQKURAtc2AJ4339Xr6RYObDsruUetO7cTx1CtlwCfRoiB HUYURY6zq3hSakIesTgBgTs= =m+eK -----END PGP SIGNATURE----- --u3/rZRmxL6MmkK24--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040401084727.GA64863>