upstream/opnsense-src
1
0
Fork 0
mirror of https://github.com/opnsense/src.git synced 2026-06-11 09:41:03 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

Remove /dev/console from the jail /dev environment. It's probably not

Browse source 
strictly a security hole, but neither is it a very good idea.  Replace
it with a symlink to /dev/null to happify programs that expect it.

It is suggested that users of the jail environment modify the jail's
syslog.conf to not send stuff to /dev/console, but instead syslog
it somewhere else.  Such as a loghost, potentially even to the host
environment's syslog.

Approved by:	jkh
This commit is contained in:
Robert Watson 2000-02-09 22:08:12 +00:00
parent 85ac786b13
commit bfbdbfef6e
1 changed files with 2 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
etc/MAKEDEV
View file

@ -319,9 +319,10 @@ std)
jail)
sh MAKEDEV std pty0
rm mem kmem pci io klog # for security
rm mem kmem pci io klog console # for security
ln -sf null mem # for libkvm (ab)users
ln -sf null kmem # --//--
ln -sf null console
;;
mach-4)