View Single Post
  #7   (View Single Post)  
Old 27th August 2008
neurosis neurosis is offline
Fdisk Soldier
Join Date: Jul 2008
Posts: 69

Originally Posted by anomie View Post
If you want ownership to match exactly between the host and its jail, it will require a deliberate, ongoing effort to keep /etc/passwd (actually /etc/pwd.db, IIRC) in sync.

Not worth the effort, IMO. Just make sure you don't accidentally give a shell user on the host system ownership of some jail resources. (You're not allowing shell users on the host system anyway, right? Right? )
Actually my host system is locked up quite tight. I am the only one with a shell login and it requires a key to login. I would like to tighten up the brute force measures a little but im still lacking in the understanding of PF although I do have a book on it now and am learning although very slowly. Now my only concern is that someone could possibly break out of the jail some how.
Reply With Quote