From owner-freebsd-jail@FreeBSD.ORG Mon May 24 11:06:57 2010 Return-Path: Delivered-To: freebsd-jail@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8F933106566C for ; Mon, 24 May 2010 11:06:57 +0000 (UTC) (envelope-from owner-bugmaster@FreeBSD.org) Received: from freefall.freebsd.org (unknown [IPv6:2001:4f8:fff6::28]) by mx1.freebsd.org (Postfix) with ESMTP id 7FA1C8FC0A for ; Mon, 24 May 2010 11:06:57 +0000 (UTC) Received: from freefall.freebsd.org (localhost [127.0.0.1]) by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id o4OB6vlC004420 for ; Mon, 24 May 2010 11:06:57 GMT (envelope-from owner-bugmaster@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.14.4/8.14.4/Submit) id o4OB6uL0004418 for freebsd-jail@FreeBSD.org; Mon, 24 May 2010 11:06:56 GMT (envelope-from owner-bugmaster@FreeBSD.org) Date: Mon, 24 May 2010 11:06:56 GMT Message-Id: <201005241106.o4OB6uL0004418@freefall.freebsd.org> X-Authentication-Warning: freefall.freebsd.org: gnats set sender to owner-bugmaster@FreeBSD.org using -f From: FreeBSD bugmaster To: freebsd-jail@FreeBSD.org Cc: Subject: Current problem reports assigned to freebsd-jail@FreeBSD.org X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 24 May 2010 11:06:57 -0000 Note: to view an individual PR, use: http://www.freebsd.org/cgi/query-pr.cgi?pr=(number). The following is a listing of current problems submitted by FreeBSD users. These represent problem reports covering all versions including experimental development code and obsolete releases. S Tracker Resp. Description -------------------------------------------------------------------------------- s conf/142972 jail [jail] [patch] Support JAILv2 and vnet in rc.d/jail o conf/141317 jail [patch] uncorrect jail stop in /etc/rc.d/jail o kern/133265 jail [jail] is there a solution how to run nfs client in ja o kern/119842 jail [smbfs] [jail] "Bad address" with smbfs inside a jail o bin/99566 jail [jail] [patch] fstat(1) according to specified jid o bin/32828 jail [jail] w(1) incorrectly handles stale utmp slots with 6 problems total. From owner-freebsd-jail@FreeBSD.ORG Tue May 25 18:22:47 2010 Return-Path: Delivered-To: jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6A955106567E for ; Tue, 25 May 2010 18:22:47 +0000 (UTC) (envelope-from glen.j.barber@gmail.com) Received: from mail-fx0-f54.google.com (mail-fx0-f54.google.com [209.85.161.54]) by mx1.freebsd.org (Postfix) with ESMTP id EE3CF8FC18 for ; Tue, 25 May 2010 18:22:46 +0000 (UTC) Received: by fxm17 with SMTP id 17so686985fxm.13 for ; Tue, 25 May 2010 11:22:45 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:date:from:to:subject :message-id:mime-version:content-type:content-disposition:user-agent; bh=X52iWn47WELgH5RI0A5vSySS8PcMIa1LunGgUI6sjAc=; b=W7p6ZYtiUE9xqHG6xcDdbQRrEpXQvAu7aeB9iHq1cVnR+RqYvOPX4McZIL6jMfgwlz GRjPzdts19bjymoF/Cg4UgB6+grpAesC2OAN0CqrLMDlXbB2aWm/jDZOxp4oxbm9q2Gg Uv5lM7Cj87VY1xqcfFXY8FHQOh6YAbmFhS0xY= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=date:from:to:subject:message-id:mime-version:content-type :content-disposition:user-agent; b=ITr9I+/Gj+G7O4s0Hn/XB86qbURzXraKLSEyrZxLKlXjl/Wok73ToZskEJetpjOiix FIXGVWafPnQ5qzjnOrIQJ0NzjXfTgM/807XaZLD2qpKziH8GeHeVtk4tZ3Uhc+DCUvNq 0CLd4rC+cLtkt2slnm4RgW6w6ICvpFKvJlh84= Received: by 10.223.63.76 with SMTP id a12mr6604868fai.10.1274810273802; Tue, 25 May 2010 10:57:53 -0700 (PDT) Received: from orion.glenbarber.us (c-71-230-240-241.hsd1.pa.comcast.net [71.230.240.241]) by mx.google.com with ESMTPS id 15sm25833174fad.22.2010.05.25.10.57.50 (version=SSLv3 cipher=RC4-MD5); Tue, 25 May 2010 10:57:52 -0700 (PDT) Date: Tue, 25 May 2010 13:54:12 -0400 From: Glen Barber To: jail@freebsd.org Message-ID: <20100525175412.GA75052@orion.glenbarber.us> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.5.20 (2009-06-14) Cc: Subject: jail(8) allow.socket_af, unknown oid X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 25 May 2010 18:22:47 -0000 Hi, The jail(8) man page has an entry under 'allow.*', allow.socket_af, which states to allow access to protocol stacks that have not had jail functionality added to them. However, though socket_af exists in sys/kern/kern_jail.c, the sysctl itself does not exist on my system: orion# sysctl -a | grep socket kern.ipc.maxsockets: 25600 kern.ipc.numopensockets: 35 security.jail.allow_raw_sockets: 0 security.jail.socket_unixiproute_only: 1 Is this sysctl missing, or is it not a tunable? Regards, -- Glen Barber From owner-freebsd-jail@FreeBSD.ORG Wed May 26 16:59:26 2010 Return-Path: Delivered-To: jail@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 08B66106566B for ; Wed, 26 May 2010 16:59:26 +0000 (UTC) (envelope-from jamie@FreeBSD.org) Received: from gritton.org (gritton.org [208.92.232.93]) by mx1.freebsd.org (Postfix) with ESMTP id C41628FC26 for ; Wed, 26 May 2010 16:59:25 +0000 (UTC) Received: from guppy.corp.verio.net (fw.oremut02.us.wh.verio.net [198.65.168.24]) (authenticated bits=0) by gritton.org (8.14.3/8.14.3) with ESMTP id o4QGxOkd066395; Wed, 26 May 2010 10:59:24 -0600 (MDT) (envelope-from jamie@FreeBSD.org) Message-ID: <4BFD52F1.9030704@FreeBSD.org> Date: Wed, 26 May 2010 10:57:21 -0600 From: Jamie Gritton User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.9.1.5) Gecko/20100103 Thunderbird/3.0 MIME-Version: 1.0 To: Glen Barber References: <20100525175412.GA75052@orion.glenbarber.us> In-Reply-To: <20100525175412.GA75052@orion.glenbarber.us> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: jail@FreeBSD.org Subject: Re: jail(8) allow.socket_af, unknown oid X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 May 2010 16:59:26 -0000 The sysctls that describe available jail parameters don't always have a type that sysctl(8) understands. In particular, the boolean parameters are given a sysctl type of "B", and sysctl(8) will ignore them. These aren't useful sysctls in any normal way - they never have a meaningful value. The exist only so their types and sizes can be determined by jail(8) and jail(3). As per the jail(8) man page, you can use "sysctl -d" to show sysctl descriptions without the value. Since it's only the values that sysctl(8) doesn't understand, such parameters as allow.sock_af will then show up. Or, in a short answer to your last question: this isn't a tunable in the normal sysctl way, just a jail parameter. - Jamie On 05/25/10 11:54, Glen Barber wrote: > The jail(8) man page has an entry under 'allow.*', allow.socket_af, which > states to allow access to protocol stacks that have not had jail functionality > added to them. > > However, though socket_af exists in sys/kern/kern_jail.c, the sysctl itself > does not exist on my system: > > orion# sysctl -a | grep socket > kern.ipc.maxsockets: 25600 > kern.ipc.numopensockets: 35 > security.jail.allow_raw_sockets: 0 > security.jail.socket_unixiproute_only: 1 > > Is this sysctl missing, or is it not a tunable? From owner-freebsd-jail@FreeBSD.ORG Wed May 26 17:48:16 2010 Return-Path: Delivered-To: jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C27591065679 for ; Wed, 26 May 2010 17:48:16 +0000 (UTC) (envelope-from glen.j.barber@gmail.com) Received: from mail-vw0-f54.google.com (mail-vw0-f54.google.com [209.85.212.54]) by mx1.freebsd.org (Postfix) with ESMTP id 729818FC22 for ; Wed, 26 May 2010 17:48:16 +0000 (UTC) Received: by vws18 with SMTP id 18so3617556vws.13 for ; Wed, 26 May 2010 10:48:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:cc:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=SZB4O7p0aD8gznjVrwOqBk8zgM50BA/2TgbYknvaDRQ=; b=DcaFD+/192zeqNSUjRC4HJ2aXyo6mIATpTiq9pw3+/Tq78TCmVvyaj5rmiUb7mHSVN hAjTNGqg+oln9R253fl/u8gtKD7OKL6LHdewqsI6JnoAKvWJD7j9nqLzu9m5ZNQrM2Gl uli4xvWfeFBLZTBVgXIdb+CLTBiVPhj1e0mbI= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding; b=Y+aFV8bcbXI5fIvbXXB7TZfvPuO2CykpmajCYeAoaDr/gOCg9F+hoxDhDmgqQsGo81 jkxGcrB60gOsI2sTa4dvryFnyL1SfMmeTrhQ9XCzyAzPYVZAdAqUcaib16sjQrHpMARR /5tQkInnzSTQnylBWvF+BW9adqTorM7pFh6cM= Received: by 10.220.47.220 with SMTP id o28mr6530656vcf.146.1274896095441; Wed, 26 May 2010 10:48:15 -0700 (PDT) Received: from schism.local (c-71-230-240-241.hsd1.pa.comcast.net [71.230.240.241]) by mx.google.com with ESMTPS id b22sm1224420vcp.8.2010.05.26.10.48.13 (version=SSLv3 cipher=RC4-MD5); Wed, 26 May 2010 10:48:13 -0700 (PDT) Message-ID: <4BFD5EDC.6060208@gmail.com> Date: Wed, 26 May 2010 13:48:12 -0400 From: Glen Barber User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv:1.9.1.9) Gecko/20100317 Thunderbird/3.0.4 MIME-Version: 1.0 To: Jamie Gritton References: <20100525175412.GA75052@orion.glenbarber.us> <4BFD52F1.9030704@FreeBSD.org> In-Reply-To: <4BFD52F1.9030704@FreeBSD.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: jail@FreeBSD.org Subject: Re: jail(8) allow.socket_af, unknown oid X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 May 2010 17:48:16 -0000 Hi Jamie, On 5/26/10 12:57 PM, Jamie Gritton wrote: > On 05/25/10 11:54, Glen Barber wrote: >> The jail(8) man page has an entry under 'allow.*', allow.socket_af, >> which >> states to allow access to protocol stacks that have not had jail >> functionality >> added to them. >> >> [snip] >> >> Is this sysctl missing, or is it not a tunable? > The sysctls that describe available jail parameters don't always have a > type that sysctl(8) understands. In particular, the boolean parameters > are given a sysctl type of "B", and sysctl(8) will ignore them. > > These aren't useful sysctls in any normal way - they never have a > meaningful value. The exist only so their types and sizes can be > determined by jail(8) and jail(3). > > As per the jail(8) man page, you can use "sysctl -d" to show sysctl > descriptions without the value. Since it's only the values that > sysctl(8) doesn't understand, such parameters as allow.sock_af will then > show up. > > Or, in a short answer to your last question: this isn't a tunable in the > normal sysctl way, just a jail parameter. > > - Jamie > Thanks for the explanation. Would there be opposition about a patch for jail(8) noting which sysctls are tunable by sysctl(8) and which are not? -- Glen Barber From owner-freebsd-jail@FreeBSD.ORG Wed May 26 19:05:59 2010 Return-Path: Delivered-To: jail@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B73F71065709 for ; Wed, 26 May 2010 19:05:59 +0000 (UTC) (envelope-from jamie@FreeBSD.org) Received: from gritton.org (gritton.org [208.92.232.93]) by mx1.freebsd.org (Postfix) with ESMTP id 7E2298FC1C for ; Wed, 26 May 2010 19:05:59 +0000 (UTC) Received: from guppy.corp.verio.net (fw.oremut02.us.wh.verio.net [198.65.168.24]) (authenticated bits=0) by gritton.org (8.14.3/8.14.3) with ESMTP id o4QJ5wT4067536; Wed, 26 May 2010 13:05:58 -0600 (MDT) (envelope-from jamie@FreeBSD.org) Message-ID: <4BFD709B.5090409@FreeBSD.org> Date: Wed, 26 May 2010 13:03:55 -0600 From: Jamie Gritton User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.9.1.5) Gecko/20100103 Thunderbird/3.0 MIME-Version: 1.0 To: Glen Barber References: <20100525175412.GA75052@orion.glenbarber.us> <4BFD52F1.9030704@FreeBSD.org> <4BFD5EDC.6060208@gmail.com> In-Reply-To: <4BFD5EDC.6060208@gmail.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: jail@FreeBSD.org Subject: Re: jail(8) allow.socket_af, unknown oid X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 May 2010 19:05:59 -0000 I think the current situation should be sufficient, where the only mention of the parameter sysctls are the note that you can see them via "sysctl -d security.jail.param". The move toward jail parameters is also a move away from using sysctl variables for the same purpose. In this new jail order, the only useful jail-related sysctls are security.jail.jailed and security.jail.max_af_ips, which are both mentioned in the "Sysctl MIB Entries" section of the man page. I don't want to worry about the sysctls that have been obsoleted by jail parameters. - Jamie On 05/26/10 11:48, Glen Barber wrote: > Thanks for the explanation. Would there be opposition about a patch for > jail(8) noting which sysctls are tunable by sysctl(8) and which are not? > > On 5/26/10 12:57 PM, Jamie Gritton wrote: >> On 05/25/10 11:54, Glen Barber wrote: >>> The jail(8) man page has an entry under 'allow.*', allow.socket_af, >>> which >>> states to allow access to protocol stacks that have not had jail >>> functionality >>> added to them. >>> >>> [snip] >>> >>> Is this sysctl missing, or is it not a tunable? >> The sysctls that describe available jail parameters don't always have a >> type that sysctl(8) understands. In particular, the boolean parameters >> are given a sysctl type of "B", and sysctl(8) will ignore them. >> >> These aren't useful sysctls in any normal way - they never have a >> meaningful value. The exist only so their types and sizes can be >> determined by jail(8) and jail(3). >> >> As per the jail(8) man page, you can use "sysctl -d" to show sysctl >> descriptions without the value. Since it's only the values that >> sysctl(8) doesn't understand, such parameters as allow.sock_af will then >> show up. >> >> Or, in a short answer to your last question: this isn't a tunable in the >> normal sysctl way, just a jail parameter. From owner-freebsd-jail@FreeBSD.ORG Fri May 28 02:02:34 2010 Return-Path: Delivered-To: jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2667D106566C for ; Fri, 28 May 2010 02:02:34 +0000 (UTC) (envelope-from jhellenthal@gmail.com) Received: from mail-yw0-f190.google.com (mail-yw0-f190.google.com [209.85.211.190]) by mx1.freebsd.org (Postfix) with ESMTP id CF31E8FC12 for ; Fri, 28 May 2010 02:02:33 +0000 (UTC) Received: by ywh28 with SMTP id 28so361117ywh.28 for ; Thu, 27 May 2010 19:02:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:sender:message-id:date:from :user-agent:mime-version:to:cc:subject:references:in-reply-to :x-enigmail-version:openpgp:content-type:content-transfer-encoding; bh=/4vgkCq/eL+LaUhehm9WY1OoJDwbXC59vfOsSP6uiRo=; b=RVOzub+RHRuKe8ImkJFfcbi9JltZ/M2EgTCrpe5wBcCBkACzsgRmQhECivMfl/kdeW AO9UBP5geT5Dba2BenxpOGsVBZPDRrl3z4ifeyJh09sIkX7cPHLf64wB9etYBmrjTjjC 7lL/FJfAFnrWFCK1+CfGoKDXV6DjVejDEjKl4= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=sender:message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:x-enigmail-version:openpgp:content-type :content-transfer-encoding; b=Jybms3/+MParXzUjFaf+yrMjBNN//XHEdVYA19lstilDFPbr9zRwzW3M9RYqKsWULf SVo56bK/qLNxjsI998b0lAB6jyf9cfwVEzr4Cbvtskl87y7KXD933j396cug/9uV8Wr+ lJQem/mbpcUENkPNvDD9twcfXsN2Pm/INHjIo= Received: by 10.231.158.130 with SMTP id f2mr2463829ibx.40.1275010304417; Thu, 27 May 2010 18:31:44 -0700 (PDT) Received: from centel.dataix.local (adsl-99-19-40-41.dsl.klmzmi.sbcglobal.net [99.19.40.41]) by mx.google.com with ESMTPS id f1sm8240232ibg.9.2010.05.27.18.31.43 (version=SSLv3 cipher=RC4-MD5); Thu, 27 May 2010 18:31:43 -0700 (PDT) Sender: "J. Hellenthal" Message-ID: <4BFF1CFD.1010108@dataix.net> Date: Thu, 27 May 2010 21:31:41 -0400 From: jhell User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.9.1.9) Gecko/20100515 Thunderbird MIME-Version: 1.0 To: Glen Barber References: <20100525175412.GA75052@orion.glenbarber.us> In-Reply-To: <20100525175412.GA75052@orion.glenbarber.us> X-Enigmail-Version: 1.0.1 OpenPGP: id=89D8547E Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: jail@freebsd.org Subject: Re: jail(8) allow.socket_af, unknown oid X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 May 2010 02:02:34 -0000 On 05/25/2010 13:54, Glen Barber wrote: > Hi, > > The jail(8) man page has an entry under 'allow.*', allow.socket_af, which > states to allow access to protocol stacks that have not had jail functionality > added to them. > > However, though socket_af exists in sys/kern/kern_jail.c, the sysctl itself > does not exist on my system: > > orion# sysctl -a | grep socket > kern.ipc.maxsockets: 25600 > kern.ipc.numopensockets: 35 > security.jail.allow_raw_sockets: 0 > security.jail.socket_unixiproute_only: 1 > > Is this sysctl missing, or is it not a tunable? > > Regards, > sysctl -A security.jail.param.allow Please see -A option to sysctl(1) Although doing anything with the output from that probably will not help you much. -- jhell From owner-freebsd-jail@FreeBSD.ORG Fri May 28 22:25:22 2010 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C0E811065670 for ; Fri, 28 May 2010 22:25:22 +0000 (UTC) (envelope-from tjg@soe.ucsc.edu) Received: from mail-01.cse.ucsc.edu (mail-01.cse.ucsc.edu [128.114.48.32]) by mx1.freebsd.org (Postfix) with ESMTP id AEF4A8FC1C for ; Fri, 28 May 2010 22:25:22 +0000 (UTC) Received: from mail-01.cse.ucsc.edu (mail-01.cse.ucsc.edu [128.114.48.32]) by mail-01.cse.ucsc.edu (Postfix) with ESMTP id ACF131008305 for ; Fri, 28 May 2010 15:07:53 -0700 (PDT) Date: Fri, 28 May 2010 15:07:53 -0700 (PDT) From: Tim Gustafson To: freebsd-jail@freebsd.org Message-ID: <945052632.315351275084473673.JavaMail.root@mail-01.cse.ucsc.edu> In-Reply-To: <580521541.315331275084459494.JavaMail.root@mail-01.cse.ucsc.edu> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-Originating-IP: [128.114.49.22] X-Mailer: Zimbra 5.0.20_GA_3127.RHEL5_64 (ZimbraWebClient - FF3.0 ([unknown])/5.0.20_GA_3127.RHEL5_64) Subject: Mounting NFS From Within a Jail X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 May 2010 22:25:22 -0000 Hi, I previously sent this message to the freebsd-questions list, but I think perhaps I should have posted it to the freebsd-jail list instead. Is it possible to mount an NFS file system from within a jail? On my jail host, I have: security.jail.mount_allowed: 1 >From the jail host, I can mount just fine: root@jailhost: mount /dev/da0s1a on / (ufs, local) devfs on /dev (devfs, local, multilabel) nfsserver:/usr/ports on /usr/ports (nfs) nfsserver:/usr/src on /usr/src (nfs) nfsserver:/usr/obj on /usr/obj (nfs) However, from within a jail, I get: root@jailguest: mount nfsserver:/usr/ports /usr/ports mount_nfs: /usr/ports, : Operation not permitted Am I missing something else here? Tim Gustafson Baskin School of Engineering UC Santa Cruz tjg@soe.ucsc.edu 831-459-5354 From owner-freebsd-jail@FreeBSD.ORG Sat May 29 13:06:32 2010 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 6019F1065675 for ; Sat, 29 May 2010 13:06:32 +0000 (UTC) (envelope-from glen.j.barber@gmail.com) Received: from mail-vw0-f54.google.com (mail-vw0-f54.google.com [209.85.212.54]) by mx1.freebsd.org (Postfix) with ESMTP id 0F7F38FC08 for ; Sat, 29 May 2010 13:06:31 +0000 (UTC) Received: by vws12 with SMTP id 12so2752411vws.13 for ; Sat, 29 May 2010 06:06:31 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:cc:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=FiS6zBpxuOa07549Sy/u00M7MDDfG/nDjdxgAeoa1uM=; b=an7v/66t3xKKup2vTIo+JyihXJruCxkq2bOjQ5fa67JjejeezWGIacprIdDH5X4yYi TsP6S0F+3wwe5YLbWeRXRHQ0vv7kkxiXu88mswYeaX2/H0imZIXCkMUKXEcKA6dfFBby ByP/I4+uH2j6WWR+8YzJ4+K6EWzn+bY/lrNVg= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type:content-transfer-encoding; b=pLpeiq5/ihCOmsSR8buknaS+5Iws7CiRJzctGJwW/bNf/z9x1TTEW61obuhipPl3g1 oyWDwNKxOzuwjWYcCjjcqpJuKSMCO1qOzNenpiuSnL6oZsGnKOMk6OYvn/dC76uOkDI2 S6WIMJSJkUvxbPEqepWLiJeylRsE3XSeiXJ6U= Received: by 10.220.60.197 with SMTP id q5mr1250080vch.256.1275138390998; Sat, 29 May 2010 06:06:30 -0700 (PDT) Received: from n2-150-149.dhcp.drexel.edu (n2-150-149.dhcp.drexel.edu [144.118.150.149]) by mx.google.com with ESMTPS id g3sm14666475vcp.16.2010.05.29.06.06.29 (version=SSLv3 cipher=RC4-MD5); Sat, 29 May 2010 06:06:29 -0700 (PDT) Message-ID: <4C011154.6030407@gmail.com> Date: Sat, 29 May 2010 09:06:28 -0400 From: Glen Barber User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv:1.9.1.9) Gecko/20100317 Thunderbird/3.0.4 MIME-Version: 1.0 To: Tim Gustafson References: <945052632.315351275084473673.JavaMail.root@mail-01.cse.ucsc.edu> In-Reply-To: <945052632.315351275084473673.JavaMail.root@mail-01.cse.ucsc.edu> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-jail@freebsd.org Subject: Re: Mounting NFS From Within a Jail X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 May 2010 13:06:32 -0000 Hi Tim, On 5/28/10 6:07 PM, Tim Gustafson wrote: > Hi, > > I previously sent this message to the freebsd-questions list, but I think perhaps I should have posted it to the freebsd-jail list instead. > > Is it possible to mount an NFS file system from within a jail? > You cannot mount NFS shares inside a jail because of rpcbind. The best solution I've found is to mount the NFS share on the jail host, and create a nullfs mount of that mountpoint to the jail. Regards, -- Glen Barber From owner-freebsd-jail@FreeBSD.ORG Sat May 29 20:49:47 2010 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0A946106564A for ; Sat, 29 May 2010 20:49:47 +0000 (UTC) (envelope-from SamanKaya@netscape.net) Received: from imr-mb02.mx.aol.com (imr-mb02.mx.aol.com [64.12.207.163]) by mx1.freebsd.org (Postfix) with ESMTP id BEAFB8FC15 for ; Sat, 29 May 2010 20:49:46 +0000 (UTC) Received: from mtaout-db03.r1000.mx.aol.com (mtaout-db03.r1000.mx.aol.com [172.29.51.195]) by imr-mb02.mx.aol.com (8.14.1/8.14.1) with ESMTP id o4TKnUo4024645 for ; Sat, 29 May 2010 16:49:30 -0400 Received: from [192.168.0.56] (81-178-2-118.dsl.pipex.com [81.178.2.118]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mtaout-db03.r1000.mx.aol.com (MUA/Third Party Client Interface) with ESMTPSA id 41CF4E000098 for ; Sat, 29 May 2010 16:49:30 -0400 (EDT) Message-ID: <4C017D27.5000803@netscape.net> Date: Sat, 29 May 2010 23:46:31 +0300 From: Kaya Saman User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.9) Gecko/20100317 Lightning/1.0b1 Thunderbird/3.0.4 MIME-Version: 1.0 To: freebsd-jail@freebsd.org x-aol-global-disposition: G X-AOL-SCOLL-SCORE: 0:2:398793376:93952408 X-AOL-SCOLL-URL_COUNT: 0 x-aol-sid: 3039ac1d33c34c017dda6306 X-AOL-IP: 81.178.2.118 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Creating jails to run Squid and multiple Bind services - Newbee X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 May 2010 20:49:47 -0000 Hi, am attempting to create a set of Jails for the first time!! I have read some documentation: http://www.freebsd.org/doc/en/articles/portbuild/new-node.html http://www.freebsd.org/doc/en/books/handbook/jails-build.html http://www.section6.net/wiki/index.php/Creating_a_FreeBSD_Jail and finally for configuring Squid in FreeBSD: http://www.freebsddiary.org/squid.php (just as I currently run this on Solaris 9) So far what I've done is this: cd /usr/src make buildworld I straight away then get an error saying: /usr/src/usr.bin/make ***error code 2 Stop in /usr/src ***error code 1 Basically what I want to do is something very similar to how I use Solaris Zones; create a directory structure which will run 1 specific service only on a specific IP address.... I am not certain if I can run 2 instances of Bind in two different Jails but would be cool if I could. I just have no idea how to start!! :-( I also attempted using this: # setenv D//here/is/the/jail/ # mkdir -p $D # cd /usr/src # make buildworld # make installworld DESTDIR=$D # make distribution DESTDIR=$D # mount -t devfs devfs $D/dev which didn't get me anywhere either :-( In preparation I have created a directory called /var/jail which I have subdirectories with the desired config in them for the services I plan to run: named_1, named_2 and squid Although I have no idea how to proceed from here??? I really appreciate if someone could give me a hand getting started as I'm totally lost on creating the jails as I can configure the services that I need to run in them easily!! Am on BSD 8.0 RELEASE 'current' edition x64. Many thanks, Kaya From owner-freebsd-jail@FreeBSD.ORG Sat May 29 22:16:20 2010 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 9AAAD1065673 for ; Sat, 29 May 2010 22:16:20 +0000 (UTC) (envelope-from 000.fbsd@quip.cz) Received: from elsa.codelab.cz (elsa.codelab.cz [94.124.105.4]) by mx1.freebsd.org (Postfix) with ESMTP id 57E3E8FC15 for ; Sat, 29 May 2010 22:16:19 +0000 (UTC) Received: from elsa.codelab.cz (localhost.codelab.cz [127.0.0.1]) by elsa.codelab.cz (Postfix) with ESMTP id 743D119E02E; Sun, 30 May 2010 00:16:18 +0200 (CEST) Received: from [192.168.1.2] (r5bb235.net.upc.cz [86.49.61.235]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by elsa.codelab.cz (Postfix) with ESMTPSA id AAFB119E02A; Sun, 30 May 2010 00:16:15 +0200 (CEST) Message-ID: <4C01922E.6080200@quip.cz> Date: Sun, 30 May 2010 00:16:14 +0200 From: Miroslav Lachman <000.fbsd@quip.cz> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.9.1.9) Gecko/20100317 SeaMonkey/2.0.4 MIME-Version: 1.0 To: Kaya Saman References: <4C017D27.5000803@netscape.net> In-Reply-To: <4C017D27.5000803@netscape.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-jail@freebsd.org Subject: Re: Creating jails to run Squid and multiple Bind services - Newbee X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 May 2010 22:16:20 -0000 Kaya Saman wrote: > Hi, > > am attempting to create a set of Jails for the first time!! > > I have read some documentation: > > http://www.freebsd.org/doc/en/articles/portbuild/new-node.html > > http://www.freebsd.org/doc/en/books/handbook/jails-build.html > > http://www.section6.net/wiki/index.php/Creating_a_FreeBSD_Jail > > and finally for configuring Squid in FreeBSD: > > http://www.freebsddiary.org/squid.php (just as I currently run this on > Solaris 9) http://www.freebsd.org/doc/en/books/handbook/jails-application.html Did you tried sysutils/ezjail? I am not using it, but if you are not too experienced jail user, you can find it useful. Note from webpage: "This setup requires advanced experience with FreeBSD and usage of its features. If the presented steps below look too complicated, it is advised to take a look at a simpler system such as sysutils/ezjail, which provides an easier method of administering FreeBSD jails and is not as sophisticated as this setup." > > > So far what I've done is this: > > cd /usr/src > make buildworld Do you have all needed sources in /usr/src? Did you install them from CD-ROM or by csup? > I straight away then get an error saying: > > /usr/src/usr.bin/make > > ***error code 2 > > Stop in /usr/src > > ***error code 1 > > Basically what I want to do is something very similar to how I use > Solaris Zones; create a directory structure which will run 1 specific > service only on a specific IP address.... > > I am not certain if I can run 2 instances of Bind in two different Jails > but would be cool if I could. Yes, you can run as many jails with "any" services as you can (if you have enough IP addresses) [...] Miroslav Lachman From owner-freebsd-jail@FreeBSD.ORG Sat May 29 22:37:31 2010 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1A4B8106566C for ; Sat, 29 May 2010 22:37:31 +0000 (UTC) (envelope-from andrew.hotlab@hotmail.com) Received: from blu0-omc2-s22.blu0.hotmail.com (blu0-omc2-s22.blu0.hotmail.com [65.55.111.97]) by mx1.freebsd.org (Postfix) with ESMTP id DA68C8FC12 for ; Sat, 29 May 2010 22:37:30 +0000 (UTC) Received: from BLU138-W4 ([65.55.111.73]) by blu0-omc2-s22.blu0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4675); Sat, 29 May 2010 15:37:30 -0700 Message-ID: X-Originating-IP: [81.174.54.98] From: Andrew Hotlab To: , Date: Sat, 29 May 2010 22:37:29 +0000 Importance: Normal Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-OriginalArrivalTime: 29 May 2010 22:37:30.0385 (UTC) FILETIME=[85C77010:01CAFF7F] Cc: Subject: RE: Creating jails to run Squid and multiple Bind services - Newbee X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 May 2010 22:37:31 -0000 ---------------------------------------- > Date: Sat=2C 29 May 2010 23:46:31 +0300 > From: SamanKaya@netscape.net > To: freebsd-jail@freebsd.org > Subject: Creating jails to run Squid and multiple Bind services - Newbee > > Hi=2C > > am attempting to create a set of Jails for the first time!! > Welcome to the club! :) If you are coming from Solaris Zones it won't take= you much time to feel at home with FreeBSD Jails. > > So far what I've done is this: > > cd /usr/src > make buildworld > > > I straight away then get an error saying: > > /usr/src/usr.bin/make > > ***error code 2 > > Stop in /usr/src > > ***error code 1 > > Basically what I want to do is something very similar to how I use > Solaris Zones=3B create a directory structure which will run 1 specific > service only on a specific IP address.... > > I am not certain if I can run 2 instances of Bind in two different Jails > but would be cool if I could. > > I just have no idea how to start!! :-( > > I really appreciate if someone could give me a hand getting started as > I'm totally lost on creating the jails as I can configure the services > that I need to run in them easily!! > > Am on BSD 8.0 RELEASE 'current' edition x64. > If you are a newcomer to FreeBSD=2C I suggest you to use a -RELEASE or erra= ta branch. -CURRENT is for developers and "hardcore" users. To make a so-called "service jail" actually seems the way to get what you a= re looking for=2C but I think you will feel much better by using a full jai= l management framework such ezjail (http://www.FreeBSD.org/cgi/url.cgi?port= s/sysutils/ezjail/pkg-descr). It will definitely help you to get a working= environment in minutes=2C enabling you to manage it with a more "Zones-lik= e" approach. This tool is also interesting because it makes all jails use a single read-= only userland=2C thus keeping both disk space consumption and administrativ= e efforts low. That's the easy way=2C just to make you "feel the power" without spend too = much time... but I strongly suggest you to make your hands dirty by followi= ng the "official way" to build jails=2C to really understand how this great= OS partitioning system works! The better source is obviously the Handbook= (http://www.freebsd.org/handbook/jails.html). When I was a newcomer to jails=2C I wrote something about my first experien= ces=2C maybe it might be agreeable to have a look at it: http://weblogs.valsania.it/bsdlab/2007/07/04/freebsd-jail-=93how-to=94/ Hoping that these little suggestions will be somewhat useful to you. Sincerely. Andrew =20 _________________________________________________________________ Hotmail: Free=2C trusted and rich email service. https://signup.live.com/signup.aspx?id=3D60969= From owner-freebsd-jail@FreeBSD.ORG Sat May 29 23:26:15 2010 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EC6D51065673 for ; Sat, 29 May 2010 23:26:14 +0000 (UTC) (envelope-from SamanKaya@netscape.net) Received: from imr-ma01.mx.aol.com (imr-ma01.mx.aol.com [64.12.206.39]) by mx1.freebsd.org (Postfix) with ESMTP id AD13A8FC18 for ; Sat, 29 May 2010 23:26:14 +0000 (UTC) Received: from mtaout-mb05.r1000.mx.aol.com (mtaout-mb05.r1000.mx.aol.com [172.29.41.69]) by imr-ma01.mx.aol.com (8.14.1/8.14.1) with ESMTP id o4TNQ42e020732; Sat, 29 May 2010 19:26:04 -0400 Received: from [192.168.0.56] (81-178-2-118.dsl.pipex.com [81.178.2.118]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mtaout-mb05.r1000.mx.aol.com (MUA/Third Party Client Interface) with ESMTPSA id A4C39E000088; Sat, 29 May 2010 19:26:03 -0400 (EDT) Message-ID: <4C01A1D9.7040604@netscape.net> Date: Sun, 30 May 2010 02:23:05 +0300 From: Kaya Saman User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.1.9) Gecko/20100317 Lightning/1.0b1 Thunderbird/3.0.4 MIME-Version: 1.0 To: Andrew Hotlab References: In-Reply-To: Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 8bit x-aol-global-disposition: G X-AOL-SCOLL-SCORE: 0:2:495881504:93952408 X-AOL-SCOLL-URL_COUNT: 0 x-aol-sid: 3039ac1d29454c01a28b7bc9 X-AOL-IP: 81.178.2.118 Cc: freebsd-jail@freebsd.org Subject: Re: Creating jails to run Squid and multiple Bind services - Newbee X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 May 2010 23:26:15 -0000 Many thanks Miroslav and Andrew, {see inbeteen the lines} On 30/05/2010 01:37, Andrew Hotlab wrote: > ---------------------------------------- > >> Date: Sat, 29 May 2010 23:46:31 +0300 >> From: SamanKaya@netscape.net >> To: freebsd-jail@freebsd.org >> Subject: Creating jails to run Squid and multiple Bind services - Newbee >> >> Hi, >> >> am attempting to create a set of Jails for the first time!! >> >> > Welcome to the club! :) If you are coming from Solaris Zones it won't take you much time to feel at home with FreeBSD Jails. > Uh, I hope so!! And thank you for the welcome :-) To tell you the truth, this is the second production server am building on FreeBSD and I am actually more impressed with BSD then Linux as a server. Especially the ability to use ZFS file system which is fast and extremely reliable not to mention high-end enterprise grade. > >> So far what I've done is this: >> >> cd /usr/src >> make buildworld >> >> >> I straight away then get an error saying: >> >> /usr/src/usr.bin/make >> >> ***error code 2 >> >> Stop in /usr/src >> >> ***error code 1 >> >> Basically what I want to do is something very similar to how I use >> Solaris Zones; create a directory structure which will run 1 specific >> service only on a specific IP address.... >> >> I am not certain if I can run 2 instances of Bind in two different Jails >> but would be cool if I could. >> >> I just have no idea how to start!! :-( >> >> I really appreciate if someone could give me a hand getting started as >> I'm totally lost on creating the jails as I can configure the services >> that I need to run in them easily!! >> >> Am on BSD 8.0 RELEASE 'current' edition x64. >> >> > If you are a newcomer to FreeBSD, I suggest you to use a -RELEASE or errata branch. -CURRENT is for developers and "hardcore" users. > I am using the -RELEASE branch, it's just that I can't post the output of uname -a as am in Windows 7 currently running Cygwin to SSH into my box. > To make a so-called "service jail" actually seems the way to get what you are looking for, but I think you will feel much better by using a full jail management framework such ezjail (http://www.FreeBSD.org/cgi/url.cgi?ports/sysutils/ezjail/pkg-descr). It will definitely help you to get a working environment in minutes, enabling you to manage it with a more "Zones-like" approach. > This tool is also interesting because it makes all jails use a single read-only userland, thus keeping both disk space consumption and administrative efforts low. > Thanks for the quick and easy Windows esq way :-P - next step GUI point and click tools.... ick!! > That's the easy way, just to make you "feel the power" without spend too much time... but I strongly suggest you to make your hands dirty by following the "official way" to build jails, to really understand how this great OS partitioning system works! The better source is obviously the Handbook (http://www.freebsd.org/handbook/jails.html). > Did I post this as one of the links I looked at?? Anyhow will take a look and see how to actually build a jail as I think that teaches more then eazy way :-) > When I was a newcomer to jails, I wrote something about my first experiences, maybe it might be agreeable to have a look at it: > http://weblogs.valsania.it/bsdlab/2007/07/04/freebsd-jail-“how-to”/ > Cool :-D Will definitely be taking a look.... > Hoping that these little suggestions will be somewhat useful to you. > > Sincerely. > > Andrew > > > > > Best Regards and many thanks, Kaya From owner-freebsd-jail@FreeBSD.ORG Sat May 29 23:35:49 2010 Return-Path: Delivered-To: freebsd-jail@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8C8E1106566B for ; Sat, 29 May 2010 23:35:49 +0000 (UTC) (envelope-from andrew.hotlab@hotmail.com) Received: from blu0-omc2-s32.blu0.hotmail.com (blu0-omc2-s32.blu0.hotmail.com [65.55.111.107]) by mx1.freebsd.org (Postfix) with ESMTP id 53B458FC0C for ; Sat, 29 May 2010 23:35:49 +0000 (UTC) Received: from BLU138-W35 ([65.55.111.72]) by blu0-omc2-s32.blu0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4675); Sat, 29 May 2010 16:35:48 -0700 Message-ID: X-Originating-IP: [81.174.54.98] From: Andrew Hotlab To: Date: Sat, 29 May 2010 23:35:48 +0000 Importance: Normal In-Reply-To: <4C01A1D9.7040604@netscape.net> References: , <4C01A1D9.7040604@netscape.net> Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-OriginalArrivalTime: 29 May 2010 23:35:48.0526 (UTC) FILETIME=[AAD564E0:01CAFF87] Cc: freebsd-jail@freebsd.org Subject: RE: Creating jails to run Squid and multiple Bind services - Newbee X-BeenThere: freebsd-jail@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Discussion about FreeBSD jail\(8\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 May 2010 23:35:49 -0000 ---------------------------------------- > Date: Sun=2C 30 May 2010 02:23:05 +0300 > From: SamanKaya@netscape.net > To: andrew.hotlab@hotmail.com > CC: 000.fbsd@quip.cz=3B freebsd-jail@freebsd.org > Subject: Re: Creating jails to run Squid and multiple Bind services - New= bee > > Many thanks Miroslav and Andrew=2C > >>> Am on BSD 8.0 RELEASE 'current' edition x64. >>> >>> >> If you are a newcomer to FreeBSD=2C I suggest you to use a -RELEASE or e= rrata branch. -CURRENT is for developers and "hardcore" users. >> > > I am using the -RELEASE branch=2C it's just that I can't post the output > of uname -a as am in Windows 7 currently running Cygwin to SSH into my bo= x. > If you are still working on Windows=2C you definitely should take a look at= PuTTY (http://www.chiark.greenend.org.uk/~sgtatham/putty/) Andrew =20 _________________________________________________________________ Hotmail: Trusted email with Microsoft=92s powerful SPAM protection. https://signup.live.com/signup.aspx?id=3D60969=