Date: Tue, 09 Nov 1999 07:05:17 +0100 From: Poul-Henning Kamp <phk@critter.freebsd.dk> To: Yoshinobu Inoue <shin@nd.net.fujitsu.co.jp> Cc: freebsd-hackers@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Re: Should jail treat ip-number? Message-ID: <21882.942127517@critter.freebsd.dk> In-Reply-To: Your message of "Tue, 09 Nov 1999 12:54:45 %2B0900." <19991109125445E.shin@nd.net.fujitsu.co.jp>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <19991109125445E.shin@nd.net.fujitsu.co.jp>, Yoshinobu Inoue writes: >Hello, > >I have some concern about jail, and would like to discuss them. > >Currentlly jail set an ip-number and let prisoned processes >only to bind it. >My concerns are, > >(1)When IPv6 is added to the system, more general id would be > desirable. I agree, *IF* IPv6 ever becomes a reality, we will look at this. >(2)What is the goal of the restriction? To isolate people in the jail from the "real" machine and from other jails. > If physical level access protection is wanted, it isn't. -- Poul-Henning Kamp FreeBSD coreteam member phk@FreeBSD.ORG "Real hackers run -current on their laptop." FreeBSD -- It will take a long time before progress goes too far! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?21882.942127517>