Xophmeister

Asked: 2015-05-01 01:53:55 +0800 CST2015-05-01 01:53:55 +0800 CST 2015-05-01 01:53:55 +0800 CST

Process separation on an OpenBSD server

I fear this may be a somewhat open-ended question that gets closed: Apologies in advance, but I'll give it a shot!

I'm considering operating an OpenBSD VM with a number of services running on the same instance (SSH, IMAP, SMTP, some HTTP server and VPN). Should I sandbox these daemons, some how (e.g., chroot jails), to ensure they don't interfere with each other, or is the OpenBSD/POSIX model already sufficient? Is there anything else I should be aware of?

1 Answers

Voted

Bink
2015-05-01T11:47:15+08:002015-05-01T11:47:15+08:00
Most of OpenBSD’s internal daemons are already privilege separated and chrooted.
0

Process separation on an OpenBSD server

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?