On 09/11/06, Luke Crawford <[EMAIL PROTECTED]> wrote:
jail is the best sandbox FreeBSD has; if that's to heavy, simply run it setuid to another user that doesn't have permission to anything- it's not as good of a sandbox, but it's lightweight.
Of course there is another problem with this approach: a different UID isn't allowed to connect to :0.0 on the X server under the FreeBSD default security settings for X. MC _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "[EMAIL PROTECTED]"
