Re: jail() House Rock

From: Hans Zaunere (zaunere@yahoo.com)
Date: 09/07/02 

Date: Fri, 6 Sep 2002 15:16:18 -0700 (PDT)
From: Hans Zaunere <zaunere@yahoo.com>
To: Travis Stevenson <tstevenson@maverik.com>

Does this occur only within the jail or outside as well?

Thanks,

Hans

--- Travis Stevenson <tstevenson@maverik.com> wrote:
> The problems I have seen is some wackiness with syslogd and
> I have trouble using ^C to cancel some interactive
> programs. I have to ^Z and then a kill. When syslogd does
> a rotation It stops logging to /var/log/messages.
> Sometimes a kill of syslogd and restarting the programs
> that log to it helps. Other times I have to restart jail.
>
> --Travis
>
> Hans Zaunere <zaunere@yahoo.com> said:
>
> >
> > I'm looking to provide jail()'d root access to clients
> (the virtual
> > private server bit). I myself have been a client on
> several of these
> > setups, and while some are better than others, I often
> find missing and
> > broken features - and I've never even looked at it from a
> security
> > standpoint.
> >
> > Aside from the commonly known man pages/handbooks/etc is
> there a
> > definitve source for PROPERLY setting one of these
> systems up?
> > Something that outlines what features mean decreased
> security?
> > Something that outlines proper layout of these systems?
> Then I can
> > judge exactly what and what not to offer. I already have
> a good handle
> > on security of regular systems, so something specific to
> the jail()'d
> > environment would be best, as I'm sure there are some
> gotchas and such.
> >
> > Thank you,
> >
> > Hans
> >
> >
> >
> > __________________________________________________
> > Do You Yahoo!?
> > Yahoo! Finance - Get real-time stock quotes
> > http://finance.yahoo.com
> >
> > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > with "unsubscribe freebsd-security" in the body of the
> message
> >
> >
>
>
>
> --
>
>
>

__________________________________________________
Do You Yahoo!?
Yahoo! Finance - Get real-time stock quotes
http://finance.yahoo.com

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Relevant Pages

  • Re: FreeBSD 4.7 Syslogs
    ... I read the man logger info and as usual the man page ... man syslogd will give you a list of all priorities and facilities. ... LOG_SECURITY Security subsystems, such as ipfw. ...
    (freebsd-questions)
  • RE: FreeBSD 4.7 Syslogs
    ... There is no error message about logger not working. ... man syslogd will give you a list of all priorities and facilities. ... LOG_SECURITY Security subsystems, such as ipfw. ...
    (freebsd-questions)
  • syslogd problem
    ... syslogd: cannot create /dev/log: address family not supported by protocol ... The whole system is working only in basic command-line mode. ... Do you Yahoo!? ...
    (Debian-User)
  • Re: Error during restarting syslogd in FreeBSD 5.2-RELEASE
    ... > Stopping syslogd. ... Same behavior during restarting inetd: ... Stopping inetd. ... Do you Yahoo!? ...
    (freebsd-questions)
  • Re: no sshd log exists
    ... Any ideas of where my configuration is wrong? ... I send a -HUP signal to the syslogd daemon? ... Do You Yahoo!? ... Mail has the best spam protection around ...
    (SSH)