From owner-freebsd-security Wed May 8 15:16:17 2002 Delivered-To: freebsd-security@freebsd.org Received: from nexusxi.com (balistraria.nexusxi.com [216.123.202.196]) by hub.freebsd.org (Postfix) with SMTP id 7C30A37B409 for ; Wed, 8 May 2002 15:15:43 -0700 (PDT) Received: (qmail 3888 invoked from network); 8 May 2002 22:15:41 -0000 Received: from unknown (HELO h410g3n.localnet) (204.209.140.10) by 0 with SMTP; 8 May 2002 22:15:41 -0000 Content-Type: text/plain; charset="iso-8859-1" From: "Dalin S. Owen" Reply-To: dowen@pstis.com Organization: Nexus XI Corp. To: "Nielsen" Subject: Re: Accounts with Restricted privileges Date: Wed, 8 May 2002 16:11:31 -0600 X-Mailer: KMail [version 1.4] References: <200205081443.51457.dowen@pstis.com> Cc: security@freebsd.org MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Message-Id: <200205081611.31348.dowen@pstis.com> Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On December 31, 1969 04:59 pm, you wrote: That is not good on a system with 1000's of users... and I have different= =20 users and UID's for inside my jails and outside.... Having a seperate quo= ta=20 file + system for jails would be real nice... maybe when I have time I wi= ll=20 write it. > Hmmm, I've used quotas in a jail. Just set the quotas on the host syste= m > with the same user ids. You can't "quota" the root user in a jail, but > other users can be done quite nicely. Besides if you really want to giv= e a > quota to directory tree (not a user) you probably should be using vn > devices. > > > I don't want that. I want all other processes to be chrooted too. B= y > > now some of you are thinking "jail"... A jail won't cut it, because y= ou > > can't > > use > > > quotas in a jail. > > all the best, > > Nate To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message