From owner-freebsd-questions Wed Apr 24 2:56: 6 2002 Delivered-To: freebsd-questions@freebsd.org Received: from projects.synantics.net (e146078.upc-e.chello.nl [213.93.146.78]) by hub.freebsd.org (Postfix) with SMTP id 1ED1437B42B for ; Wed, 24 Apr 2002 02:55:57 -0700 (PDT) Received: (qmail 15348 invoked by uid 0); 24 Apr 2002 09:54:28 -0000 Received: from unknown (HELO tesla) (10.60.1.10) by 0 with SMTP; 24 Apr 2002 09:54:28 -0000 Subject: will postgresql run in a jail ? From: Frans Haarman To: questions@freebsd.org Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.3 Date: 24 Apr 2002 11:53:01 +0200 Message-Id: <1019641981.3716.16.camel@tesla> Mime-Version: 1.0 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG In the developers handbook I found ``jail is a very useful tool for running applications in a secure environment but it does have some shortcomings. Currently, the IPC mechanisms have not been converted to the suser_xxx so applications such as MySQL cannot be run within a jail.'' I was wondering if this has changed yet (running 4-STABLE), and if postgres uses the same mechanisms. Is there a way to check if a program will run within a jail ? Without trying. And is there a way to have a jail record al used files ? So we can easily see what is being used in the jail, and delete the rest. Maybe even make a custom Makefile for the jail so no diskspace is wasted! Thanks, Frans To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message