Re: [Jailkit-dev] owner restriction

jailkit-dev

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Jailkit-dev] owner restriction

From:	Olivier Sessink
Subject:	Re: [Jailkit-dev] owner restriction
Date:	Sun, 02 Mar 2014 17:16:00 +0100
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.3.0

On 03/02/2014 01:09 PM, Richard Scott wrote:
>
> Hi,
>
> Can you show some examples of folder structure and permissions as the
> jail directory *needs* to be owned by root for security...
>
> The jail user then gets a home directory somewhere in side that
> directory that it has full permissions on.
>
> For example, I have a user Bob that has a jail.
>
> The jail is
>
> /mnt/jail/bob (this ine is owned by root)
>
> but the users home directory is
>
> /mnt/jail/bob/home/bob
>
> and this last directory bob has full permissions on.
>
> This way it stops the jail user from updating any binary files in the
> jail and breaking out of it.
>

You give a perfect example yourself !?

Olivier



-- 
Bluefish website http://bluefish.openoffice.nl/
Blog http://oli4444.wordpress.com/

[Prev in Thread]

Current Thread

[Next in Thread]

[Jailkit-dev] owner restriction, Pas, 2014/03/02
- Re: [Jailkit-dev] owner restriction, Richard Scott, 2014/03/02
  - Re: [Jailkit-dev] owner restriction, Olivier Sessink <=
- Re: [Jailkit-dev] owner restriction, Olivier Sessink, 2014/03/02

Prev by Date: Re: [Jailkit-dev] owner restriction
Next by Date: Re: [Jailkit-dev] owner restriction
Previous by thread: Re: [Jailkit-dev] owner restriction
Next by thread: Re: [Jailkit-dev] owner restriction
Index(es):
- Date
- Thread