From owner-cvs-all@FreeBSD.ORG  Wed Apr  9 16:24:15 2003
Return-Path: <owner-cvs-all@FreeBSD.ORG>
Delivered-To: cvs-all@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id C829337B401; Wed,  9 Apr 2003 16:24:15 -0700 (PDT)
Received: from fledge.watson.org (fledge.watson.org [204.156.12.50])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id EF05D43F3F; Wed,  9 Apr 2003 16:24:14 -0700 (PDT)
	(envelope-from robert@fledge.watson.org)
Received: from fledge.watson.org (fledge.pr.watson.org [192.0.2.3])
	by fledge.watson.org (8.12.9/8.12.9) with SMTP id h39NOYYY031211;
	Wed, 9 Apr 2003 19:24:34 -0400 (EDT)
	(envelope-from robert@fledge.watson.org)
Date: Wed, 9 Apr 2003 19:24:34 -0400 (EDT)
From: Robert Watson <rwatson@FreeBSD.org>
X-Sender: robert@fledge.watson.org
To: Pawel Jakub Dawidek <nick@garage.freebsd.pl>
In-Reply-To: <20030409230425.GB1280@garage.freebsd.pl>
Message-ID: <Pine.NEB.3.96L.1030409191320.31027B-100000@fledge.watson.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
cc: cvs-src@FreeBSD.org
cc: src-committers@FreeBSD.org
cc: cvs-all@FreeBSD.org
cc: Mike Barcroft <mike@FreeBSD.org>
Subject: Re: cvs commit: src/usr.bin/killall killall.1 killall.c
	src/usr.sbin Makefile src/usr.sbin/jail jail.8 jail.c
	src/usr.sbin/jexec Makefile jexec.8 jexec.c src/usr.sbin/jls
	Makefile jls.8 jls.c
X-BeenThere: cvs-all@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: CVS commit messages for the entire tree <cvs-all.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-all>
List-Post: <mailto:cvs-all@freebsd.org>
List-Help: <mailto:cvs-all-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-all>,
	<mailto:cvs-all-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Apr 2003 23:24:16 -0000


On Thu, 10 Apr 2003, Pawel Jakub Dawidek wrote:

> JID couldn't be changed in jail, thats for sure.  In hierarchal jails we
> can do something else: hierarchal names. 
> 
> Jail named 'alpha' is create in mainsystem. Jail 'beta' is created
> inside jail 'alpha'. Jails 'delta' and 'sigma' are created in jail
> 'beta', etc.  When I'm listing those jails it looks like this: 
> 
> 	mainsystem# jls
> 	JID	[...]
> 	alpha	[...]
> 	alpha.beta	[...]
> 	alpha.beta.delta	[...]
> 	alpha.beta.sigma	[...]
> 	alpha.gamma	[...]
> 
> And there can't be names spoofing. (If, ofcourse '.' is invalid char in
> jail name:)). 

Sounds reasonable to me, although a bit more trouble to parse and render
:-).

Robert N M Watson             FreeBSD Core Team, TrustedBSD Projects
robert@fledge.watson.org      Network Associates Laboratories