FreeBSD Jail Hardware Security

JayHall
JayHall used Ask the Experts™
on
Is it possible to limit what devices a FreeBSD jail has access to?  I am specifically interested in limiting jail access to a tape drive (/dev/nsa1) and an autoloader (/dev/ch0).

Thanks,


Jay
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Top Expert 2015
Commented:
Systrace no more...
You can use granular user permissions like sgid executables (devfs.rules is your friend)

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial