vserver development mailing list: Re: [vserver] port restrictions

Re: [vserver] port restrictions:
vserver development mailing list
[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]

About this list	Date view	Thread view	Subject view	Author view	Attachment view

From: Paul Sladen (vserver_at_paul.sladen.org)
Date: Thu 01 Aug 2002 - 09:07:56 BST

Next message: Paul Sladen: "Re: [vserver] Question about date"
Previous message: Paul Sladen: "Re: [vserver] Kernel help"
In reply to: klavs klavsen: "[vserver] port restrictions"
Next in thread: klavs klavsen: "Re: [vserver] port restrictions"
Reply: klavs klavsen: "Re: [vserver] port restrictions"

On 1 Aug 2002, klavs klavsen wrote:
>
> These measures would greatly enhance the vserver security, as a hacker
> who got hold of root in your vserver would not be able to install a
> common root kit for instance.

You *have* root in a vserver. Isn't that the whole point?

If you're after a slightly more restrictive setup, you maybe more interested
in FreeVSD which works by having a pseudo-root user `admin' and therefore
having to proxy anything that does need extra/root permissions, which may
give you the abstract you seem to be after.

http://www.freevsd.org/

..and buy a CD or something from Darren and the gang at Idaya to say thanks.

-Paul

-- 
Nottingham, GB

Next message: Paul Sladen: "Re: [vserver] Question about date"
Previous message: Paul Sladen: "Re: [vserver] Kernel help"
In reply to: klavs klavsen: "[vserver] port restrictions"
Next in thread: klavs klavsen: "Re: [vserver] port restrictions"
Reply: klavs klavsen: "Re: [vserver] port restrictions"

About this list	Date view	Thread view	Subject view	Author view	Attachment view

[Next/Previous Months] [Main vserver Project Homepage] [Howto Subscribe/Unsubscribe] [Paul Sladen's vserver stuff]
Generated on Wed 06 Nov 2002 - 07:03:41 GMT by hypermail 2.1.3