pf ruleset modify from jail
Szukács István
leccine at gmail.com
Tue Sep 6 13:19:43 PDT 2005
Max Laier:
>On Tuesday 06 September 2005 13:52, Szukács István wrote:
>
>
>>The problem is that inside the jail the root has access to pf(the
>>outside system's pf), and can read/write the ruleset.
>>How can i protect it?
>>
>>
>
>You can use devfs rulesets to hide /dev/pf from the jail's devfs. See
>devfs(8) for more details.
>
>
>
i try to use this rulesets but i am a little bit confused(there is no
detailed howto)
but it is not belong to this list anymore
thanks anyway
More information about the freebsd-pf
mailing list