Go Back   DaemonForums > FreeBSD > FreeBSD General

FreeBSD General Other questions regarding FreeBSD which do not fit in any of the categories below.

Thread Tools Display Modes
  #1   (View Single Post)  
Old 16th June 2008
bgobs bgobs is offline
Port Guard
Join Date: Jun 2008
Location: Sofia, BG
Posts: 17
Default jails "design" ?

im planning to build web and mail server.

web jail - apache22, mysql, php, PEAR, postfixadmin, phpmyadmin (and bsd ftpd)
mail jail - dovecot, postfix, spamassassing and clamav

postfixadmin, phpmyadmin and ftpd will be used only by me. i'll "hide" them with aliases and i'll restrict access with htaccess or htpasswd.
i dont have plans to give ssh access to my server. there will be only 2 users - root and my own.

my question is: is this jail design stupid? for example - is it better to setup different jail for mysql and/or php.. and so on..?

in general - any suggestions, ideas?
Reply With Quote
  #2   (View Single Post)  
Old 16th June 2008
deemon's Avatar
deemon deemon is offline
Fdisk Soldier
Join Date: May 2008
Location: Estonia
Posts: 50

What's the reason behind allowing ftp instead of ssh (sftp)?
Reply With Quote
  #3   (View Single Post)  
Old 16th June 2008
stukov's Avatar
stukov stukov is offline
Real Name: Jean-Michel Philippon-Nadeau
Package Pilot
Join Date: May 2008
Location: Sherbrooke, Qc, Canada
Posts: 167

If you were paranoid you could jail phpmyadmin et postfixadmin as they might be the more vulnerable applications in your setup.
"Any intelligent fool can make things bigger, more complex, and more violent. It takes a touch of genius -- and a lot of courage -- to move in the opposite direction."
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Opera Port - conflicting pkgs in "make install" IronForge OpenBSD Packages and Ports 5 29th October 2009 05:10 AM
Fixed "xinit" after _7 _8, "how" here in case anyones' "X" breaks... using "nvidia" jb_daefo Guides 0 5th October 2009 09:31 PM
"Thanks" and "Edit Tags". diw Feedback and Suggestions 2 29th March 2009 12:06 AM
Newbie-friendly "printing in OpenBSD" guide wanted Shagbag OpenBSD Packages and Ports 5 7th July 2008 09:26 PM

All times are GMT. The time now is 11:01 AM.

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2023, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick