Solved What level of devfs_ruleset is more secure?

wisdown

Active Member

Reaction score: 10
Messages: 113

Hey guys,

I am working on my git server, and SSH its claiming about have no access to /dev/tty inside of jail.

After read about this issue, I have found is need setup on /etc/rc.conf to start it using:

Code:
devfs_load_rulesets="YES"
And on my jail.conf I need use devfs_ruleset, the level 3 and 5 have access to /dev/tty, so what should use focusing on security?

Big number is lesse secure?
 

kpa

Beastie's Twin

Reaction score: 1,801
Messages: 6,318

Yeah, the less devices exposed the better. The idea of the rules is that you either pick one ruleset or combination of rulesets with the least amount of devices exposed or you craft your own rules.
 
Top