to jail or not to jail

Andrea Venturoli ml at
Sun Jun 2 08:43:35 UTC 2019

On 6/2/19 2:30 AM, David Mehler wrote:

> What I'm wondering is if I should jail off these services

IMO yes, you should.

> If I do this how would I
> get the tls certificates in to each jail, I'm looking for the maximum
> automation.

I use on the base host: of course it has access to jails' 
filesystem, so it simply puts each certificate into place (as if it was 
in base but with /usr/jails/.../ prepended).


More information about the freebsd-questions mailing list