Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 23 Aug 2001 22:39:47 +0400 (MSD)
From:      Alexey Zakirov <frank@agava.com>
To:        Shannon Johnson <shannon@needhams.com>
Cc:        <freebsd-security@freebsd.org>
Subject:   Re: jail & security
Message-ID:  <Pine.BSF.4.32.0108232227020.47648-100000@hellbell.domain>
In-Reply-To: <00b001c12bda$09996fc0$3303a8c0@needhams.com>

next in thread | previous in thread | raw e-mail | index | archive | help
> Alexey, correct me if I am wrong, but Igor was asking if it was possible to

> limit "resources allocated by  each VM (jail)." I simply addressed it on
> this issue and not on "root compromise." That is why I refered him to login
> classes.
>
> By the way, it is nice to know that you would trash my system if given root
> access within the jail. However, there are ways to prevent people like
> yourself from destroying a system (e.g. read only file system, setting the
> system immutable flag, etc.)

jail(2) is GREAT feature. I'm thank PHK for did it. It's really pretend to
be a great security help in the unixos.

> Remind me to never give you a shell account.

It IS a problem. Shell is not a problem, but there is the PR/18209.
If you want a shell account: http://register.h1.ru/index.shtml

*** WBR, Alexey Zakirov (frank@agava.com)


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.32.0108232227020.47648-100000>