-- Leo's gemini proxy
-- Connecting to gemini.tuxmachines.org:1965...
-- Connected
-- Sending request
-- Meta line: 20 text/gemini;lang=en-GB
Tux Machines
Posted by Roy Schestowitz on Feb 11, 2023,
updated Feb 11, 2023
> Alright, for part 3 we are finally able to put CBSD to good use. Again, a FreeBSD 13.1 test system is used, CBSD is version 1.13.21 and /cbsd was chosen as the workdir.
> After two entire articles without managing anything with a management framework… *drum roll* …we’re going to create our first jail using CBSD. Yes, finally! There’s at least two more topics that I’d like to discuss before getting into jail management, but I also don’t want to delay things further. Just so that you’ve heard it already, CBSD ties into bsdconfig(8) as a submodule. We’re going to explore this a little later. It’s good to know, though, in case you are in need for an easy way to change the configuration you made during the initialization.
> One interesting feature introduced in early Unix (V7) is the chroot(2) syscall (accompanied by the chroot(8) command added later). They allow for putting processes in what is called a chroot jail. What this means is that for the chrooted process (and its children) the filesystem root is not the one of the actual host system but some directory further down the filesystem hierarchy. The result is restricting access to that directory and all the dirs below it and hiding away everything above. This allows for some simple sandboxing and is often used e.g. with FTP where users are chrooted to their home directory.
> March 30-April 2, 2023, Tokyo University of Science, Tokyo, Japan
> BSDCan, a BSD conference held in Ottawa, Canada, quickly established itself as the technical conference for people working on and with 4.4BSD based operating systems and related projects. The organizers have found a fantastic formula that appeals to a wide range of people from extreme novices to advanced developers.
> Tutorials: 17-18 May 2023 (Wed/Thu)
> Conference: 19-20 May 2023 (Fri/Sat)
Bonus:
> Last Tuesday I wrote that it was worth considering a FreeBSD or NetBSD desktop if you're at all technical. I glossed over many of the engineering benefits for once, in favour of something more touchy feely:
-- Response ended
-- Page fetched on Thu Jun 13 20:50:43 2024