06-17-2007
Should Paris Hilton be in Jail?
Enough of boring techie topics!! Vote on Paris Hilton and her jail time!! What do you think?
5 More Discussions You Might Find Interesting
1. Linux
I created a user
useradd -d /disk2/ftpfiles me
How would i beable to jail me so he could not move arround my file system? (4 Replies)
Discussion started by: byblyk
4 Replies
2. Solaris
Hi Gurus,
I am creating a user for ftp only on Solaris 10. However while testing I can see user can reach to root directory.
I followed following while creating the user
1 Created a shell in /usr/bin/ftponly as chmod a+x to ftponly
2 Placed the entry in /etc/shells
... (2 Replies)
Discussion started by: kumarmani
2 Replies
3. UNIX for Advanced & Expert Users
I have a developer that needs ssh access to a server to get to a specific directory. I want to restrict them to that directory. I've tried to set their shell as rksh which does jail them but only if they are using ssh from another unix system. If they are using putty or winscp they can still... (2 Replies)
Discussion started by: toor13
2 Replies
4. Cybersecurity
Hi all,
I want to jail a process in his folder, so he can't have any link with a parent folder.
Ex. If i'm a hacker, and I can upload my script & and I can start it, i'll could go to ../, /etc/passwd, etc..
So what I did is to chroot the process :
I copied all libraries used by the... (1 Reply)
Discussion started by: Deb.I.am
1 Replies
5. Cybersecurity
Hello people,
I'm creating a web game control panel, where people can manage their gameserver on a php made control panel.
But i have no idea how to create an jailed inviroment for the gameserver,
I've looked at possebilites for chroot, but i don't want the gameserver has any binaries of linux... (1 Reply)
Discussion started by: gm33
1 Replies
LEARN ABOUT FREEBSD
vfs_set
VFS_SET(9) BSD Kernel Developer's Manual VFS_SET(9)
NAME
VFS_SET -- set up loadable file system vfsconf
SYNOPSIS
#include <sys/param.h>
#include <sys/kernel.h>
#include <sys/module.h>
#include <sys/mount.h>
void
VFS_SET(struct vfsops *vfsops, fsname, int flags);
DESCRIPTION
VFS_SET() creates a vfsconf structure for the loadable module with the given vfsops, fsname and flags, and declares it by calling
DECLARE_MODULE(9) using vfs_modevent() as the event handler.
Possible values for the flags argument are:
VFCF_STATIC File system should be statically available in the kernel.
VFCF_NETWORK Network exportable file system.
VFCF_READONLY Does not support write operations.
VFCF_SYNTHETIC Pseudo file system, data does not represent on-disk files.
VFCF_LOOPBACK Loopback file system layer.
VFCF_UNICODE File names are stored as Unicode.
VFCF_JAIL Can be mounted from within a jail if security.jail.mount_allowed sysctl is set to 1.
VFCF_DELEGADMIN Supports delegated administration if vfs.usermount sysctl is set to 1.
VFCF_SBDRY When in VFS method, the thread suspension is deferred to the user boundary upon arrival of stop action.
PSEUDOCODE
/*
* Fill in the fields for which we have special methods.
* The others are initially null. This tells vfs to change them to
* pointers to vfs_std* functions during file system registration.
*/
static struct vfsops myfs_vfsops = {
.vfs_mount = myfs_mount,
.vfs_root = myfs_root,
.vfs_statfs = myfs_statfs,
.vfs_unmount = myfs_unmount,
};
VFS_SET(myfs_vfsops, myfs, 0);
SEE ALSO
jail(2), jail(8), DECLARE_MODULE(9), vfs_modevent(9), vfsconf(9)
AUTHORS
This manual page was written by Chad David <davidc@acns.ab.ca>.
BSD
February 21, 2013 BSD