CyberLeo Kitsana wrote: > Ted Mittelstaedt wrote: > >> But getting back to the discussion - the OP's friend seemed like >> he -wanted- to get involved in some rather Bad People. >> > > I'm not entirely sure, but I can't find anyone in this thread whose > actually talked with the OP's friend other than the OP themselves, who > seems to be biased against the idea in the first place. I'm not sure how > such an assertion can be safely made under the circumstances. > > Personally, I've always been looking for ways to secure the shell > service I provide, for things such as webspace file transfer and > MUCK/MUD gameserver hosting. I dislike providing FTP to people, as it's > so insecure and firewall-unfriendly, but chrooting SSH/SFTP in a > suitable manner is something I've never been able to successfully complete. > > I had something going with Busybox on a test linux box, but alas, > compilation fails horribly on FreeBSD for reasons not adequately explored. > there was some work at getting busybox working for freebsd, see http://info.iet.unipi.it/~luigi/FreeBSD/
> So, for now, I stick with judicious use of UID-based firewall rules, > careful application of unix file permissions, the > security.bsd.see_other_uids sysctl, and knowing personally each person I > host, so I can personally deal with them if they venture into > not-so-nice territory. > > _______________________________________________ firstname.lastname@example.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"