From owner-freebsd-questions@FreeBSD.ORG Thu Oct 9 16:19:33 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CCF4216A4B3 for ; Thu, 9 Oct 2003 16:19:33 -0700 (PDT) Received: from cloudburst.umist.ac.uk (cloudburst.umist.ac.uk [130.88.119.66]) by mx1.FreeBSD.org (Postfix) with ESMTP id 59D3343FAF for ; Thu, 9 Oct 2003 16:19:30 -0700 (PDT) (envelope-from lewiz@black.lewiz.org) Received: from lh014.halls.umist.ac.uk ([130.88.163.14] helo=yellow.lewiz.org) by cloudburst.umist.ac.uk with esmtp (Exim 4.24) id 1A7k48-0004bf-Th; Fri, 10 Oct 2003 00:19:28 +0100 Received: from black.lewiz.org ([192.168.0.12]) by mail.lewiz.org with smtp (Exim 4.22) id 1A7k42-000767-EU; Fri, 10 Oct 2003 00:19:22 +0100 Received: (nullmailer pid 68571 invoked by uid 4001); Thu, 09 Oct 2003 23:19:25 -0000 Date: Fri, 10 Oct 2003 00:19:25 +0100 From: Lewis Thompson To: Kenny Freeman Message-ID: <20031009231925.GD587@lewiz.org> Mail-Followup-To: Lewis Thompson , Kenny Freeman , FreeBSD-questions References: <20030803200948.GA10712@lewiz.org> <200310091700.09658.kennyf@pchg.net> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="4zI0WCX1RcnW9Hbu" Content-Disposition: inline In-Reply-To: <200310091700.09658.kennyf@pchg.net> X-GPG-Fingerprint: 90A4 939E 3847 A3E4 8103 2A48 22DA B428 542F ED3F X-GPG-Info: http://www.westwood.karoo.net/pgpkey / horowitz.surfnet.nl User-Agent: Mutt/1.5.4i X-MailScanner-Information: Please contact the ISP for more information X-MailScanner: Found to be clean cc: FreeBSD-questions Subject: Re: Jail FS questions. X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Oct 2003 23:19:33 -0000 --4zI0WCX1RcnW9Hbu Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Oct 09, 2003 at 05:00:02PM -0400, Kenny Freeman wrote: Content-Description: signed data > I've got a 120GB drive in that system, so for me I don't really have a > problem with space. Yeah, same here, but the way I figure it is it's surely better to conserve the disk space if at all possible ;) > jails, for example: >=20 > /secure/files/mail <- mail spools >=20 > would be shared using: (/etc/crontab entries) >=20 > none /secure/files/mail > /secure/internal/smtp/postfix/server/var/spool/mail > rw,noexec,nosuid,nodev 0 0 none /secure/files/mail > /secure/internal/imap/courier/server/var/spool/mail > rw,noexec,nosuid,nodev 0 0 >=20 > haven't really got these up and running yet (ie. I don't really know > if postfix + courier both work inside a jail). I can confirm they both do ;) I assume you mean Courier-IMAP and not the Courier MTA. It sucks. Postfix or Exim are much better ;) > Anyway, nullfs is great for "remounting" > parts of the file system. Yeah, right now I'm using NFS mounts, which is a bit ugly, to say the least. Since I had troubles with union I steered clear of nullfs, since the same ``slippery dog'' warning exists ;) Thanks very much for sharing your ideas, eventually somebody will write a jail HOWTO that covers all of the different methods of achieving these things... I hope ;) -lewiz. --=20 I was so much older then, I'm younger than that now. --Bob Dylan, 1964. ------------------------------------------------------------------------ -| msn:purple@lewiz.net | jab:lewiz@jabber.org | url:http://lewiz.net |- --4zI0WCX1RcnW9Hbu Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (FreeBSD) iD8DBQE/hez9Itq0KFQv7T8RAnvYAJoDQLuje3D1fdVyK+3DQ8QutC7x9QCbBYE/ j344kSe0084jGzqb3uypeLI= =6Mp/ -----END PGP SIGNATURE----- --4zI0WCX1RcnW9Hbu--