Date: Thu, 9 Oct 2003 20:31:43 -0700 From: Kris Kennaway <kris@obsecurity.org> To: "Marc G. Fournier" <scrappy@hub.org> Cc: Kenny Freeman <kennyf@pchg.net> Subject: Re: Jail FS questions. Message-ID: <20031010033143.GA11384@rot13.obsecurity.org> In-Reply-To: <20031009221555.W28590@ganymede.hub.org> References: <20030803200948.GA10712@lewiz.org> <200310091700.09658.kennyf@pchg.net> <20031009211629.T28590@ganymede.hub.org> <20031009212824.Q28590@ganymede.hub.org> <20031010005515.GH587@lewiz.org> <20031009221555.W28590@ganymede.hub.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--pf9I7BMVVzbSWLtt Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Oct 09, 2003 at 10:19:46PM -0300, Marc G. Fournier wrote: > > If I use unionfs as the ``base'' for the jail then every directory seems > > to be automagically owned by the person that mounted it (i.e. root). > > This causes me problems for stuff like mailspool, etc. I think this is > > the way unionfs works though, not an issue I am personally having. >=20 > Ah, neat ... I'd never noticed that before ... its never affected anything > as far as I've experienced though, but we don't unionfs mount /var, as > there is a bug in unionfs dealing with sockets that mounting /var causing > the server to crash repeatedly ... See..that's just what I'm talking about. Software that "works fine as long as you remember not to do X, Y or Z, which will crash the system" is what is called "not production quality". Advocating that users (which are not the same as testers, or developers) use it anyway on their production systems is irresponsible. Kris --pf9I7BMVVzbSWLtt Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (FreeBSD) iD8DBQE/higfWry0BWjoQKURAjWEAJ0e/ceDr4iYAWyoABBNv3ucXk0kngCfeDvs h6V1Gb5WjSO1WNPAqS7YMwc= =u/7z -----END PGP SIGNATURE----- --pf9I7BMVVzbSWLtt--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031010033143.GA11384>