From owner-freebsd-questions Thu Nov 8 18:49:57 2001 Delivered-To: freebsd-questions@freebsd.org Received: from pr0n.kutulu.org (pr0n.kutulu.org [151.196.107.157]) by hub.freebsd.org (Postfix) with ESMTP id 73C2637B405 for ; Thu, 8 Nov 2001 18:49:54 -0800 (PST) Received: from cc191573g (kutulu@cc191573-g.longhill1.md.home.com [24.37.104.136]) by pr0n.kutulu.org (8.11.6/8.11.6) with SMTP id fA92ngk12871; Thu, 8 Nov 2001 21:49:42 -0500 (EST) (envelope-from kutulu@kutulu.org) Message-ID: <01cf01c168c8$7c3328c0$88682518@longhill1.md.home.com> From: "Kutulu" To: "Kutulu" , "Anthony Atkielski" , "Giorgos Keramidas" , References: <15330.6606.417524.41024@guru.mired.org><002b01c1635f$5a5f4300$0a00000a@atkielski.com> <15330.14419.809266.281360@guru.mired.org> <007e01c1636e$97016d10$0a00000a@atkielski.com> <20011108021537.E79276@hades.hell.gr> <002801c1682c$818807b0$0a00000a@atkielski.com> <20011108154407.B2965@hades.hell.gr> <009801c1688d$0b18d9e0$0a00000a@atkielski.com> <01af01c168c7$d0d70e60$88682518@longhill1.md.home.com> Subject: Re: Re[2]: Tiny starter configuration for FreeBSD Date: Thu, 8 Nov 2001 21:44:41 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG ----- Original Message ----- From: "Kutulu" To: "Anthony Atkielski" ; "Giorgos Keramidas" ; Sent: Thursday, November 08, 2001 9:39 PM Subject: Re: Re[2]: Tiny starter configuration for FreeBSD > ----- Original Message ----- > From: "Anthony Atkielski" > To: "Giorgos Keramidas" ; > Sent: Thursday, November 08, 2001 2:39 PM > Subject: Re: Re[2]: Tiny starter configuration for FreeBSD > > > > Giorgos writes: > > > > > If the need for Telnet arises (someone who > > > doesn't have an SSH client on their Windows > > > box), I have set up a jail ... > > > > What's a jail? (Apart from the common definition, of course--I assume > this is > > something special in FreeBSD.) > > A jail is a chroot'd environment whereby the processes running with it are > restricted in what resources (primarily files/directories, but also sockets > and such) they will be able to see. Anything outside of the virtual root of > the jail is not only inaccessable, but won't even appear to exist to > processes running inside the jail. Examples you'll probably recognize are > the "sandbox" people often run BIND in, or the FTP anonymous root directory. Well, I should correct myself here, in that these examples are not jails, but merely chroot'd environments. A jail is very similar (in fact, it sets up a chroot internally) but also limits the machine's hostname/IP address, and prevents access to shared resources. I think there's a man page (maybe even two) for it. --K To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message