On Wednesday 29 May 2002 6:06 pm, ben heise wrote: > >LOL, yes. Give it a user acct that is disabled, give it write access to > > ONLY > > >its dir, maybe even put it in a chroot jail... > > so how would you do all this? chroot jail? and what about something like > a data path to the mud dir?(or is that a chroot jail?) When you do a chroot jail, the / directory for the mud is set to another dir. Copy(or hardlink, NOT SYMLINK) the files listed in ldconfig circledir/bin/circle into circledir/lib, then replace the "bin/circle XXX" line somewhere in your runscript with "chroot circledir bin/circle XXX" circle will not be able to touch anything outside its directory. This is somewhat difficult to pull off, but it's worth it. > write access privileges I understand.... > > but I was also wondering about firewalls and such. do you all run your > MUD behind like a hardware/software firewall scheme? with routers and > such? Why? -- +---------------------------------------------------------------+ | FAQ: http://qsilver.queensu.ca/~fletchra/Circle/list-faq.html | | Archives: http://post.queensu.ca/listserv/wwwarch/circle.html | | Newbie List: http://groups.yahoo.com/group/circle-newbies/ | +---------------------------------------------------------------+
This archive was generated by hypermail 2b30 : 06/25/03 PDT