Re: [PATCH] jail NG schript patch for mounting devfs and procfs automatically

• Previous message: Joe Sotham: "5.1-RELEASE hardware detect problem - install stalls"
• In reply to: Robert Watson: "Re: [PATCH] jail NG schript patch for mounting devfs and procfs automatically"
• Next in thread: Mike Makonnen: "Re: [PATCH] jail NG schript patch for mounting devfs and procfs automatically"
• Reply: Mike Makonnen: "Re: [PATCH] jail NG schript patch for mounting devfs and procfs automatically"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Tue, 29 Jul 2003 19:08:38 +0200
To: Robert Watson <rwatson@freebsd.org>

On 29.07.2003 18:47, Robert Watson wrote:

> On Tue, 29 Jul 2003, Jens Rehsack wrote:
>
>> I updated the rcng jail start script to mount devfs and procfs into the
>> jail if wanted. Adding entries to /etc/fstab didn't work properly,
>> because the jail filesystem wasn't mounted when the startup process
>> wants to mount it.
>>
>> Going this way allows us to control which jail could be used via ssh (or
>> another remote shell), too.
>>
>> Any comments gladly welcome.
>>
>> If it's useful for FreeBSD, I will write the rc.conf(5) update, too.
>> Please inform me to do this.
>
> Neat.

:-)

> Someone, and unfortunately I appear to have lost track of who, had some
> tweaks to the rcNG scripts to set up some reasonable devfs rules for a
> jail, and apply them to the devfs mounted in a jail. Otherwise, you risk
> exposing "undesired" device nodes to the virtual environment. I suspect a
> search of the -current archives will turn up who, but I think a necessary
> part of a solution here will be to make sure jails are set up with the
> right devfs contents.

Sorry, overseen. Sct W. Hetzel was the submitter, but it never becomes
committed. If could be be so kind, please :-) (of course, not without
prove it first)

Jens

_______________________________________________
freebsd-current@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-current
To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org"

• Previous message: Joe Sotham: "5.1-RELEASE hardware detect problem - install stalls"
• In reply to: Robert Watson: "Re: [PATCH] jail NG schript patch for mounting devfs and procfs automatically"
• Next in thread: Mike Makonnen: "Re: [PATCH] jail NG schript patch for mounting devfs and procfs automatically"
• Reply: Mike Makonnen: "Re: [PATCH] jail NG schript patch for mounting devfs and procfs automatically"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages Re: BIND inside a jail on FreeBSD 6.0 ... devfs rule: ioctl DEVFSIO_RAPPLY: Operation not permitted ... (I realize that BIND already runs in a chroot'd environment, ... I tried mounting the devfs outside the jail to the jail's ... (freebsd-questions) Re: devfs creates unwanted devices in jail after ruleset applied ... I am running a DNS server in a jail and have setup a devfs mount in the ... devfs -m JAILDIR/dev rule -s 35 add path random unhide ... (freebsd-questions) Re: Jails ... > I have recently completed a clean install of FreeBSD 5.1. ... > followed the instructions to the letter for creating a jail. ... you need to mount devfs i.e. ... (freebsd-questions) devfs creates unwanted devices in jail after ruleset applied ... I am running a DNS server in a jail and have setup a devfs mount in the ... devfs -m JAILDIR/dev rule -s 35 add path random unhide ... (freebsd-questions) Re: Phantom Jails ... wait for the sockets to go away entirely and then stop the jail ... because what keeps the jail up is not a socket but is related to devfs ... So you're implying, that releasing the ucreds, that in this case ... (freebsd-hackers)