Date: Wed, 9 Apr 2003 19:24:34 -0400 (EDT) From: Robert Watson <rwatson@FreeBSD.org> To: Pawel Jakub Dawidek <nick@garage.freebsd.pl> Cc: Mike Barcroft <mike@FreeBSD.org> Subject: Re: cvs commit: src/usr.bin/killall killall.1 killall.c src/usr.sbin Makefile src/usr.sbin/jail jail.8 jail.c src/usr.sbin/jexec Makefile jexec.8 jexec.c src/usr.sbin/jls Makefile jls.8 jls.c Message-ID: <Pine.NEB.3.96L.1030409191320.31027B-100000@fledge.watson.org> In-Reply-To: <20030409230425.GB1280@garage.freebsd.pl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 10 Apr 2003, Pawel Jakub Dawidek wrote: > JID couldn't be changed in jail, thats for sure. In hierarchal jails we > can do something else: hierarchal names. > > Jail named 'alpha' is create in mainsystem. Jail 'beta' is created > inside jail 'alpha'. Jails 'delta' and 'sigma' are created in jail > 'beta', etc. When I'm listing those jails it looks like this: > > mainsystem# jls > JID [...] > alpha [...] > alpha.beta [...] > alpha.beta.delta [...] > alpha.beta.sigma [...] > alpha.gamma [...] > > And there can't be names spoofing. (If, ofcourse '.' is invalid char in > jail name:)). Sounds reasonable to me, although a bit more trouble to parse and render :-). Robert N M Watson FreeBSD Core Team, TrustedBSD Projects robert@fledge.watson.org Network Associates Laboratories
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.3.96L.1030409191320.31027B-100000>