Date: Thu, 23 Aug 2001 22:39:47 +0400 (MSD) From: Alexey Zakirov <frank@agava.com> To: Shannon Johnson <shannon@needhams.com> Cc: <freebsd-security@freebsd.org> Subject: Re: jail & security Message-ID: <Pine.BSF.4.32.0108232227020.47648-100000@hellbell.domain> In-Reply-To: <00b001c12bda$09996fc0$3303a8c0@needhams.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> Alexey, correct me if I am wrong, but Igor was asking if it was possible to > limit "resources allocated by each VM (jail)." I simply addressed it on > this issue and not on "root compromise." That is why I refered him to login > classes. > > By the way, it is nice to know that you would trash my system if given root > access within the jail. However, there are ways to prevent people like > yourself from destroying a system (e.g. read only file system, setting the > system immutable flag, etc.) jail(2) is GREAT feature. I'm thank PHK for did it. It's really pretend to be a great security help in the unixos. > Remind me to never give you a shell account. It IS a problem. Shell is not a problem, but there is the PR/18209. If you want a shell account: http://register.h1.ru/index.shtml *** WBR, Alexey Zakirov (frank@agava.com) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.32.0108232227020.47648-100000>