From owner-freebsd-security Fri Sep 6 15:16:25 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6FE4337B400 for ; Fri, 6 Sep 2002 15:16:19 -0700 (PDT) Received: from web12805.mail.yahoo.com (web12805.mail.yahoo.com [216.136.174.40]) by mx1.FreeBSD.org (Postfix) with SMTP id 203F943E65 for ; Fri, 6 Sep 2002 15:16:19 -0700 (PDT) (envelope-from zaunere@yahoo.com) Message-ID: <20020906221618.98815.qmail@web12805.mail.yahoo.com> Received: from [66.114.70.134] by web12805.mail.yahoo.com via HTTP; Fri, 06 Sep 2002 15:16:18 PDT Date: Fri, 6 Sep 2002 15:16:18 -0700 (PDT) From: Hans Zaunere Subject: Re: jail() House Rock To: Travis Stevenson Cc: freebsd-security@freebsd.org In-Reply-To: <20020906211112.D6190492644@hermes.maverik.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Does this occur only within the jail or outside as well? Thanks, Hans --- Travis Stevenson wrote: > The problems I have seen is some wackiness with syslogd and > I have trouble using ^C to cancel some interactive > programs. I have to ^Z and then a kill. When syslogd does > a rotation It stops logging to /var/log/messages. > Sometimes a kill of syslogd and restarting the programs > that log to it helps. Other times I have to restart jail. > > --Travis > > Hans Zaunere said: > > > > > I'm looking to provide jail()'d root access to clients > (the virtual > > private server bit). I myself have been a client on > several of these > > setups, and while some are better than others, I often > find missing and > > broken features - and I've never even looked at it from a > security > > standpoint. > > > > Aside from the commonly known man pages/handbooks/etc is > there a > > definitve source for PROPERLY setting one of these > systems up? > > Something that outlines what features mean decreased > security? > > Something that outlines proper layout of these systems? > Then I can > > judge exactly what and what not to offer. I already have > a good handle > > on security of regular systems, so something specific to > the jail()'d > > environment would be best, as I'm sure there are some > gotchas and such. > > > > Thank you, > > > > Hans > > > > > > > > __________________________________________________ > > Do You Yahoo!? > > Yahoo! Finance - Get real-time stock quotes > > http://finance.yahoo.com > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-security" in the body of the > message > > > > > > > > -- > > > __________________________________________________ Do You Yahoo!? Yahoo! Finance - Get real-time stock quotes http://finance.yahoo.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message