05-10-2007
FBSD jail question
I'm trying to establish a jail on a FBSD 6.1 system and have a couple of questions on bringing up the daemon.
Under the jail man page there are two user flags that I am unclear on,
-u username The user name from host environment as whom the command
should run.
-U username The user name from jailed environment as whom the command
should run.
I think that I understand what the -U is for, but wouldn't bet the family silverware on it, as for the -u flag I am completely lost.
Could someone give me a clue on these two items?
Thanks
thumper
9 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
hi
i got a problem. I use a fbsd box to share my (DSL)internet connection.
I got 2 networkcards in my fbsd box, but my networkcard 1 (to my modem) always go out. the led don't burn anymore and I lose my connection to the internet :(
but my networkcard2 (to my local network) doesn't go out,... (2 Replies)
Discussion started by: Stormpie
2 Replies
2. UNIX for Dummies Questions & Answers
HI
i'm compiling my kernel with the support of this chipset.
In FreeBSD 4.2 and 4.3 I got no problem with the kernel, but with 4.4 I just can't get the kernel compiled with the soundcard support.
i added this to my kernel
device pcm
device snd
something wrong... (2 Replies)
Discussion started by: Stormpie
2 Replies
3. UNIX for Dummies Questions & Answers
i am running nat on my freeBSD and web/ftp server.
The rule allow ip from any to any must always be? or how? if i accept all packets to go on my ep0 which diverts all to my intranet it doesnt help, must the rule allow ip from any to any always be ?
even if many rules are between divert rule and... (3 Replies)
Discussion started by: hachik
3 Replies
4. UNIX for Dummies Questions & Answers
FBSD 4.6
How do I colorize my konsole to see directories etc. Am able to get color in the shell with ls -GF in my .bashrc. But color does not show in KDE3 Konsole (Xwindows) for some reason.FBSD 4.6 (1 Reply)
Discussion started by: lancest
1 Replies
5. Linux
I created a user
useradd -d /disk2/ftpfiles me
How would i beable to jail me so he could not move arround my file system? (4 Replies)
Discussion started by: byblyk
4 Replies
6. BSD
I just don't know how do I have to connect them... Connecting via USB, if some body knows, please post here... Thankue... (0 Replies)
Discussion started by: PomaH 6yxDAK
0 Replies
7. UNIX for Dummies Questions & Answers
I was reading an article on how it is very important to setup a chroot jail to run bind. I can follow what the article says but one thing I am unclear about is now on system boot the BIND process in the chroot jail will start since it the owner will no longer be root but some other user. Can... (1 Reply)
Discussion started by: mojoman
1 Replies
8. Solaris
Hi Gurus,
I am creating a user for ftp only on Solaris 10. However while testing I can see user can reach to root directory.
I followed following while creating the user
1 Created a shell in /usr/bin/ftponly as chmod a+x to ftponly
2 Placed the entry in /etc/shells
... (2 Replies)
Discussion started by: kumarmani
2 Replies
9. Cybersecurity
Hello people,
I'm creating a web game control panel, where people can manage their gameserver on a php made control panel.
But i have no idea how to create an jailed inviroment for the gameserver,
I've looked at possebilites for chroot, but i don't want the gameserver has any binaries of linux... (1 Reply)
Discussion started by: gm33
1 Replies
LEARN ABOUT DEBIAN
jailer.conf
JAILER(5) File Formats Manual JAILER(5)
NAME
jailer.conf - configuration file of jailer
SYNOPSIS
jailer.conf
DESCRIPTION
jailer is a script for creating chrooted environments for Debian packages.
jailer.conf is the configuration file for jailer.conf
Every configuration definition has to start and end with a jail identifier, which should be unique and be in brackets.
<apache>
For example, an Apache chroot identifier should look like this:
</apache>
The identifier use needs to be closed.
The configuration for the chroot instance is defined inside these identifiers. The following lines can be used to describe the con-
figuration:
Root: /var/chroot/apache
This line describes the PATH of the chrooted enviroment.
Conf:
This line describes the PATH or PATH/filename which should be copied over to the chrooted environment. For example Conf:
/etc/apache/* , which uses a wild card.
Debs:
This line contains the name of those Debian packages which should be installed into the chrooted environment.
Junk-Debs:
This line contains those deb packages which should not be installed into the chrooted environment.
Junk:
This line contains those files or directories which should not be installed. For example /lib/* means all files and links under /lib
should not be installed, while /lib/libconsole.so.0.0.0 means a file which should not to be installed.
Extra:
This line contains those files or directories which should be installed into the chrooted environment. For example: /var/run will
install that a directory which is needed for the chrooted service.
WARNING
Do not configure your daemon inside your jail, because updatejail script will wipe out all the data inside the jail. If you would want to
change any settings inside the jail, make the changes in the original location and then run updatejail . This makes it possible to place a
jail even to a ramdisk.
SEE ALSO
updatejail(8) jailer.conf(5), dpkg(8)
AUTHOR
This manual page was written by Peter Holtzl <peter.holtzl@balabit.hu>.
December 4, 2001 JAILER(5)