Date: Thu, 5 Oct 2000 14:25:11 +0200 From: Bart_van_Leeuwen@doosys.com To: "Jacques A. Vidrine" <n@nectar.com> Cc: freebsd-security@freebsd.org Subject: Re: Fwd: eth-security : ANNOUNCE : Resources no for ALL Message-ID: <OFB0C2480F.3416AB2D-ONC125696F.00437311@intra.doosys.com>
next in thread | raw e-mail | index | archive | help
Creating a single jail for a group of interactive users is quite practical. Creating a seperate jail for each individual interactive user can become inpractical for example due to disk space requirements and the complexibility of the evironment for the administrator. One key element in creating a secure environment is being able to get a decent level of insight in what is going on in the environment. Once tools for administrating jails are better developed this picture might change a bit. Bart van Leeuwen. mailto:Bart_van_Leeuwen@doosys.com http://www.doosys.com/ mailto:bart@ixori.demon.nl http://www.ixori.demon.nl/ "Jacques A. Vidrine" <n@nectar.com> To: cjclark@alum.mit.edu Sent by: cc: freebsd-security@FreeBSD.ORG owner-freebsd-security@F Subject: Re: Fwd: eth-security : ANNOUNCE : Resources no for ALL reeBSD.ORG 05-10-2000 13:56 On Wed, Oct 04, 2000 at 11:43:25PM -0700, Crist J . Clark wrote: > But anyway, jail(8) is a very different beast from the patches. It is > not practical to put each interactive user in a jail for, say, a > several dozen or several hundered user system. And why is that? -- Jacques Vidrine / n@nectar.com / jvidrine@verio.net / nectar@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?OFB0C2480F.3416AB2D-ONC125696F.00437311>