From owner-freebsd-current  Sat Nov 23  2:31: 2 2002
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 4C38237B401
	for <current@FreeBSD.ORG>; Sat, 23 Nov 2002 02:31:01 -0800 (PST)
Received: from critter.freebsd.dk (critter.freebsd.dk [212.242.86.163])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7AE9443EAA
	for <current@FreeBSD.ORG>; Sat, 23 Nov 2002 02:31:00 -0800 (PST)
	(envelope-from phk@critter.freebsd.dk)
Received: from critter.freebsd.dk (localhost [127.0.0.1])
	by critter.freebsd.dk (8.12.6/8.12.6) with ESMTP id gANAUl76034162;
	Sat, 23 Nov 2002 11:30:47 +0100 (CET)
	(envelope-from phk@critter.freebsd.dk)
To: Kyle Martin <mkm@ieee.org>
Cc: sven svenskar <polski@europe.com>, current@FreeBSD.ORG
Subject: Re: DEVFS 
In-Reply-To: Your message of "Sat, 23 Nov 2002 04:17:01 CST."
             <20021123101700.GA84720@marvin.bsdng.org> 
Date: Sat, 23 Nov 2002 11:30:47 +0100
Message-ID: <34161.1038047447@critter.freebsd.dk>
From: Poul-Henning Kamp <phk@critter.freebsd.dk>
Sender: owner-freebsd-current@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-current.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-current>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-current>
X-Loop: FreeBSD.ORG

In message <20021123101700.GA84720@marvin.bsdng.org>, Kyle Martin writes:
>On Sat, Nov 16, 2002 at 10:15:53AM -0500, sven svenskar wrote:
>> I have server i give people shell accounts each in chroot and they need some devices. How this work with DEVFS? Should I copy devices from DEVFS with dd or tar? Or I mount DEVFS in every chroots? Please help!

You should:
	1. use jails instead if you can (you can jail multiple jails on
	   the same IP and it can even be the systems "own" IP).
	2. mount devfs in each jail.
	3. use devfs(8) to filter which devices you give people access to.
	4. contribute your scripts to do all this to the project :-)

-- 
Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message