Date: Thu, 16 May 2002 17:58:42 +0200 (CEST) From: Attila Nagy <bra@fsn.hu> To: Peter Pentchev <roam@ringlet.net> Cc: freebsd-hackers@FreeBSD.org Subject: Re: reboot your own jail ? Message-ID: <Pine.LNX.4.44.0205161756580.26003-100000@scribble.fsn.hu> In-Reply-To: <20020516184326.I349@straylight.oblivion.bg> References: <20020516003127.I17484-100000@utility.clubscholarship.com> <20020516144159.C349@straylight.oblivion.bg> <Pine.LNX.4.44.0205161348501.26003-100000@scribble.fsn.hu> <20020516162219.E45898@mail.webmonster.de> <20020516180414.H349@straylight.oblivion.bg> <Pine.LNX.4.44.0205161706340.26003-100000@scribble.fsn.hu> <20020516184326.I349@straylight.oblivion.bg>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello, > Yes, for your particular kind of jail :) And as a matter of fact, most > things could be started like that, indeed.. Seems I need to really wake > up and start thinking, and think myself away from the 'default' concept > of starting a full-fledged /bin/sh /etc/rc jail. Why would a /bin/sh needed for a nameserver? For helping crackers' life? :) I don't really like /bin/sh /etc/rc jails. And if I can, I often do jails on the 127/8 subnet with a simple redirect for that particular port. This also helps preventing the cracker to connect out from that jail. --------[ Free Software ISOs - ftp://ftp.fsn.hu/pub/CDROM-Images/ ]------- Attila Nagy e-mail: Attila.Nagy@fsn.hu Free Software Network (FSN.HU) phone @work: +361 210 1415 (194) cell.: +3630 306 6758 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.LNX.4.44.0205161756580.26003-100000>