Hello, > Yes, for your particular kind of jail :) And as a matter of fact, most > things could be started like that, indeed.. Seems I need to really wake > up and start thinking, and think myself away from the 'default' concept > of starting a full-fledged /bin/sh /etc/rc jail. Why would a /bin/sh needed for a nameserver? For helping crackers' life? :) I don't really like /bin/sh /etc/rc jails. And if I can, I often do jails on the 127/8 subnet with a simple redirect for that particular port. This also helps preventing the cracker to connect out from that jail.
--------[ Free Software ISOs - ftp://ftp.fsn.hu/pub/CDROM-Images/ ]------- Attila Nagy e-mail: [EMAIL PROTECTED] Free Software Network (FSN.HU) phone @work: +361 210 1415 (194) cell.: +3630 306 6758 To Unsubscribe: send mail to [EMAIL PROTECTED] with "unsubscribe freebsd-hackers" in the body of the message
