From owner-freebsd-questions  Wed Dec 20 17:36:27 2000
From owner-freebsd-questions@FreeBSD.ORG  Wed Dec 20 17:36:24 2000
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from fw.wintelcom.net (ns1.wintelcom.net [209.1.153.20])
	by hub.freebsd.org (Postfix) with ESMTP id D3E6E37B698
	for <freebsd-questions@FreeBSD.ORG>; Wed, 20 Dec 2000 17:36:21 -0800 (PST)
Received: (from bright@localhost)
	by fw.wintelcom.net (8.10.0/8.10.0) id eBL1aKY14169;
	Wed, 20 Dec 2000 17:36:20 -0800 (PST)
Date: Wed, 20 Dec 2000 17:36:20 -0800
From: Alfred Perlstein <bright@wintelcom.net>
To: The Hermit Hacker <scrappy@hub.org>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: jail(8) and mount point limits ...
Message-ID: <20001220173619.E19572@fw.wintelcom.net>
References: <Pine.BSF.4.21.0012202110510.640-100000@thelab.hub.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <Pine.BSF.4.21.0012202110510.640-100000@thelab.hub.org>; from scrappy@hub.org on Wed, Dec 20, 2000 at 09:19:54PM -0400
Sender: bright@fw.wintelcom.net
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

* The Hermit Hacker <scrappy@hub.org> [001220 17:21] wrote:
> 
> Morning all ...
> 
> 	I'm trying to figure out a way fo cleanly sharing directories
> betwen jail environments, and am running against a few 'brick walls', and
> am wondering if anyone has any ideas ...
> 
> 	Right now, I have a server that has 30 jail environments
> configured onto it ... works great, but I'd like to work on reducing some
> of the duplication of files, if I can, so that I don't have to upgrade 30
> servers when I need to upgrade a piece of software, or, at the very least,
> not have 30+ /usr/ports to update ...
> 
> 	Now, someone had one suggested a hard link, but you can't do that
> with directories according to the docs, so that idea is out ... and a
> symlink won't go "through" the chroot() environment ... 

Actually, you just make a skeleton directory tree for each user,
then just hardlink the files.

Make sure you chflags the files so that people can't mess with them.
As long as the directories are owned by the individual user they can
remove files, but they won't be able to modify the contents unless they
unlink them.

-- 
-Alfred Perlstein - [bright@wintelcom.net|alfred@freebsd.org]
"I have the heart of a child; I keep it in a jar on my desk."


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message