Quote:
Originally Posted by anomie
If you want ownership to match exactly between the host and its jail, it will require a deliberate, ongoing effort to keep /etc/passwd (actually /etc/pwd.db, IIRC) in sync.
Not worth the effort, IMO. Just make sure you don't accidentally give a shell user on the host system ownership of some jail resources. (You're not allowing shell users on the host system anyway, right? Right? )
|
Actually my host system is locked up quite tight. I am the only one with a shell login and it requires a key to login. I would like to tighten up the brute force measures a little but im still lacking in the understanding of PF although I do have a book on it now and am learning although very slowly. Now my only concern is that someone could possibly break out of the jail some how.