Update of /cvsroot/devil-linux/build/config/etc/sysconfig/jail
In directory sc8-pr-cvs1:/tmp/cvs-serv18408/config/etc/sysconfig/jail
Modified Files:
DOMINO ISC_BIND POSTFIX SAGATOR
Log Message:
make sure all random devices exist in the chroot jails
copy full group/passwd in postfix jail
Index: DOMINO
===================================================================
RCS file: /cvsroot/devil-linux/build/config/etc/sysconfig/jail/DOMINO,v
retrieving revision 1.8
retrieving revision 1.9
diff -u -d -r1.8 -r1.9
--- DOMINO 20 Aug 2003 19:15:35 -0000 1.8
+++ DOMINO 23 Dec 2003 14:57:01 -0000 1.9
@@ -19,7 +19,9 @@
# devices to create
# parameter: devicename type major minor user.group rights
DEV null c 1 3 0.0 0666
-DEV zero c 1 5 0.0 0666
+DEV zero c 1 5 0.0 0644
+DEV random c 1 8 0.0 644
+DEV urandom c 1 9 0.0 644
DEV tty9 c 4 9 0.0 0666
# files and directories to copy
Index: ISC_BIND
===================================================================
RCS file: /cvsroot/devil-linux/build/config/etc/sysconfig/jail/ISC_BIND,v
retrieving revision 1.7
retrieving revision 1.8
diff -u -d -r1.7 -r1.8
--- ISC_BIND 16 Oct 2003 17:49:30 -0000 1.7
+++ ISC_BIND 23 Dec 2003 14:57:01 -0000 1.8
@@ -22,8 +22,9 @@
# devices to create
# parameter: devicename type major minor user.group rights
DEV null c 1 3 0.0 0666
-DEV zero c 1 5 0.0 0666
-DEV random c 1 8 0.0 0444
+DEV zero c 1 5 0.0 0644
+DEV random c 1 8 0.0 644
+DEV urandom c 1 9 0.0 644
# files and directories to copy
COPY /etc/named
Index: POSTFIX
===================================================================
RCS file: /cvsroot/devil-linux/build/config/etc/sysconfig/jail/POSTFIX,v
retrieving revision 1.3
retrieving revision 1.4
diff -u -d -r1.3 -r1.4
--- POSTFIX 22 Jul 2003 00:21:03 -0000 1.3
+++ POSTFIX 23 Dec 2003 14:57:01 -0000 1.4
@@ -30,7 +30,9 @@
# devices to create
# parameter: devicename type major minor user.group rights
DEV null c 1 3 0.0 0666
-DEV zero c 1 5 0.0 0666
+DEV zero c 1 5 0.0 0644
+DEV random c 1 8 0.0 644
+DEV urandom c 1 9 0.0 644
# files and directories to copy
COPY /etc/postfix
@@ -42,14 +44,10 @@
COPY /lib/libnss*.so*
COPY /etc/localtime
COPY /usr/bin/cmp
+COPY /etc/passwd
+COPY /etc/group
# set Linux capabilities
#CAP CAP_NET_BIND_SERVICE
LINK /var/spool/postfix
-
-COPYUSER postfix
-COPYGROUP postdrop
-COPYGROUP postfix
-COPYGROUP nogroup
-COPYUSER nobody
Index: SAGATOR
===================================================================
RCS file: /cvsroot/devil-linux/build/config/etc/sysconfig/jail/SAGATOR,v
retrieving revision 1.3
retrieving revision 1.4
diff -u -d -r1.3 -r1.4
--- SAGATOR 20 Sep 2003 18:58:00 -0000 1.3
+++ SAGATOR 23 Dec 2003 14:57:01 -0000 1.4
@@ -30,8 +30,9 @@
# devices to create
# parameter: devicename type major minor user.group rights
DEV null c 1 3 0.0 0666
-DEV zero c 1 5 0.0 0666
-DEV urandom c 1 9 0.0 0644
+DEV zero c 1 5 0.0 0644
+DEV random c 1 8 0.0 644
+DEV urandom c 1 9 0.0 644
# files and directories to copy
COPY /etc/resolv.conf
|
