diff options
Diffstat (limited to 'documentation/content/en/books/arch-handbook/jail')
| -rw-r--r-- | documentation/content/en/books/arch-handbook/jail/_index.adoc | 2 | ||||
| -rw-r--r-- | documentation/content/en/books/arch-handbook/jail/_index.po | 4 |
2 files changed, 3 insertions, 3 deletions
diff --git a/documentation/content/en/books/arch-handbook/jail/_index.adoc b/documentation/content/en/books/arch-handbook/jail/_index.adoc index a77ce2ae10..734b224060 100644 --- a/documentation/content/en/books/arch-handbook/jail/_index.adoc +++ b/documentation/content/en/books/arch-handbook/jail/_index.adoc @@ -50,7 +50,7 @@ endif::[] On most UNIX(R) systems, `root` has omnipotent power. This promotes insecurity. If an attacker gained `root` on a system, he would have every function at his fingertips. In FreeBSD there are sysctls which dilute the power of `root`, in order to minimize the damage caused by an attacker. Specifically, one of these functions is called `secure levels`. Similarly, another function which is present from FreeBSD 4.0 and onward, is a utility called man:jail[8]. Jail chroots an environment and sets certain restrictions on processes which are forked within the jail. For example, a jailed process cannot affect processes outside the jail, utilize certain system calls, or inflict any damage on the host environment. -Jail is becoming the new security model. People are running potentially vulnerable servers such as Apache, BIND, and sendmail within jails, so that if an attacker gains `root` within the jail, it is only an annoyance, and not a devastation. This article mainly focuses on the internals (source code) of jail. For information on how to set up a jail see the extref:{handbook}[handbook entry on jails, jails]. +Jail is becoming the new security model. People are running potentially vulnerable servers such as Apache, BIND, and sendmail within jails, so that if an attacker gains `root` within the jail, it is only an annoyance, and not a devastation. This article mainly focuses on the internals (source code) of jail. For information on how to set up a jail see the extref:{handbook}jails[handbook entry on jails, jails]. [[jail-arch]] == Architecture diff --git a/documentation/content/en/books/arch-handbook/jail/_index.po b/documentation/content/en/books/arch-handbook/jail/_index.po index 11a5c7c097..3dbf327ecc 100644 --- a/documentation/content/en/books/arch-handbook/jail/_index.po +++ b/documentation/content/en/books/arch-handbook/jail/_index.po @@ -7,7 +7,7 @@ msgid "" msgstr "" "Project-Id-Version: FreeBSD Documentation VERSION\n" -"POT-Creation-Date: 2025-05-01 19:56-0300\n" +"POT-Creation-Date: 2025-11-08 16:17+0000\n" "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" "Last-Translator: FULL NAME <EMAIL@ADDRESS>\n" "Language-Team: LANGUAGE <LL@li.org>\n" @@ -52,7 +52,7 @@ msgid "" "if an attacker gains `root` within the jail, it is only an annoyance, and " "not a devastation. This article mainly focuses on the internals (source " "code) of jail. For information on how to set up a jail see the extref:" -"{handbook}[handbook entry on jails, jails]." +"{handbook}jails[handbook entry on jails, jails]." msgstr "" #. type: Title == |