From owner-freebsd-questions Mon Jan 29 5:16:17 2001 Delivered-To: freebsd-questions@freebsd.org Received: from d9168.upc-d.chello.nl (d9168.upc-d.chello.nl [213.46.9.168]) by hub.freebsd.org (Postfix) with ESMTP id 57BA637B400 for ; Mon, 29 Jan 2001 05:16:00 -0800 (PST) Received: by d9168.upc-d.chello.nl (Postfix, from userid 1001) id 6FD92215; Mon, 29 Jan 2001 14:15:59 +0100 (CET) Date: Mon, 29 Jan 2001 14:15:59 +0100 From: Edwin Groothuis To: Mark Livingstone Cc: freebsd-questions@freebsd.org Subject: Re: JAIL!!!!!!! do you know?! Message-ID: <20010129141559.K62745@d9168.upc-d.chello.nl> Mail-Followup-To: Edwin Groothuis , Mark Livingstone , freebsd-questions@freebsd.org References: <003101c089f4$76bac0f0$0200a8c0@vvk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <003101c089f4$76bac0f0$0200a8c0@vvk>; from mlivingstone@ottawa.com on Mon, Jan 29, 2001 at 08:07:42AM -0500 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Mon, Jan 29, 2001 at 08:07:42AM -0500, Mark Livingstone wrote: > what bothers me is that i have a lot of "not very secure" daemons > running, such as samba, webmin, etc.. outside my box is well > firewalled, howerver, inside it's a good opportunity for a user to > hack it (especially since it's a server and a number of Windows > machines are connected to it). at least in linux i could limit > users to their only processes, "ps auxw" would show only processed > run by them. here everyone sees everything and it really worries > me. IIRC ps(1) will only show the processes in the jail itself, outside the jail everybody can see the processes. Edwin -- Edwin Groothuis | Interested in MUDs? Visit Fatal Dimensions: mavetju@chello.nl | http://fataldimensions.nl.eu.org/ ------------------+ telnet://fataldimensions.nl.eu.org:4000 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message