Date: Wed, 17 May 2000 15:50:49 -0500 From: "Jacques A . Vidrine" <n@nectar.com> To: Dan Harnett <danh@wzrd.com> Cc: freebsd-security@freebsd.org Subject: Re: Jail: Problems? Proper Usage? Status? Practicality? Message-ID: <20000517155049.B48295@bone.nectar.com> In-Reply-To: <20000517164519.A79630@mail.wzrd.com>; from danh@wzrd.com on Wed, May 17, 2000 at 04:45:19PM -0400 References: <20000517110758.C6884@bone.nectar.com> <Pine.NEB.3.96L.1000517123129.20229D-100000@fledge.watson.org> <20000517152621.A48218@bone.nectar.com> <20000517164519.A79630@mail.wzrd.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, May 17, 2000 at 04:45:19PM -0400, Dan Harnett wrote: > Isn't there a downside to that as well? Unless the files are read-only, if > one jail should get compromised any common shared files could actually lead to > holes in the remaining jails. An example being a modified sshd or telnetd. The assumption is that the files _are_ read-only, or even better, schg. -- Jacques Vidrine / n@nectar.com / nectar@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000517155049.B48295>