From: <smi...@us...> - 2003-12-24 01:18:38
|
Update of /cvsroot/devil-linux/build/config/etc/sysconfig/jail In directory sc8-pr-cvs1:/tmp/cvs-serv32474/config/etc/sysconfig/jail Modified Files: POSTFIX Log Message: - postfix jail script now empties the lib and etc directories before creating the jail - start snort after mysqld Index: POSTFIX =================================================================== RCS file: /cvsroot/devil-linux/build/config/etc/sysconfig/jail/POSTFIX,v retrieving revision 1.4 retrieving revision 1.5 diff -u -d -r1.4 -r1.5 --- POSTFIX 23 Dec 2003 14:57:01 -0000 1.4 +++ POSTFIX 24 Dec 2003 01:18:33 -0000 1.5 @@ -27,6 +27,10 @@ # define this, if the package should not be unpacked into the jail root directory PACKAGEDIR / +# delete the following directories/files, before doing anything +DELETE /etc/* +DELETE /lib/* + # devices to create # parameter: devicename type major minor user.group rights DEV null c 1 3 0.0 0666 @@ -46,6 +50,9 @@ COPY /usr/bin/cmp COPY /etc/passwd COPY /etc/group +COPY /etc/shadow +COPY /etc/gshadow + # set Linux capabilities #CAP CAP_NET_BIND_SERVICE |