Date: Mon, 16 Apr 2001 23:28:56 +0200 From: Roelof Osinga <roelof@nisser.com> To: Odhiambo Washington <wash@wananchi.com> Cc: FBSD-Q <freebsd-questions@FreeBSD.ORG> Subject: Re: Starting JAIL Message-ID: <3ADB6418.D9B96B6F@nisser.com> References: <20010416134036.A2022@everest.wananchi.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Odhiambo Washington wrote: > > I am only writing to seek views from those already running JAIL > Well, I just need some advise with JAIL as far as starting up the JAIL > is concerned.I did my fisrt jail yesterday but was wondering how to > start the jails everytime I reboot the host server. Do you have a nice way > to do it? Some script to automate this? I hate to think I haveto start the > JAIl by hand everytime. > Secondly, how do you ensure the safety of your jail? I mean it is possible > that when i am logged in as root in the host server I can still messup > files in the jail, right? the JAIL being a guest system, is there a > way to ensure noone can delete/modify those files accidentally? Put them into a script and put that script into /usr/local/etc/rc.d. Depending on your release you might need to check the first param for a "start" or "stop" content. You don't. Jail it might be, but it's still chroot() based (granted, I'll be whipped horribly if tell it wrong... but, hey! You only live once ;) and chroot's can be broken out of. Especially when you hand them a shell. HTH, Roelof -- Home is where the (@) http://eboa.com/ is. Nisser home -- http://www.Nisser.nl/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3ADB6418.D9B96B6F>