Date: Sun, 14 Apr 2002 21:17:52 +0400 (MSD) From: Dmitry Morozovsky <marck@rinet.ru> To: stable@FreeBSD.ORG Subject: jails and local-NFS /usr Message-ID: <20020414210723.X7299-100000@woozle.rinet.ru>
next in thread | raw e-mail | index | archive | help
Hello there colleagues, I'm planning to play with jail(8) etc to deploy this facility for our hosting services, and now looking at the ability to use NFS from jailed pseudo-machine to host. I'd think of making special filesystem with restricted set of binaries and export it as a local-NFS partition to be mounted readonly as jailed /usr. However, there's a couple of sentenses in jail(8) manpage, and especially: >Attempting to serve NFS from the host environment may also cause >confusion, and cannot be easily reconfigured to use only specific IPs, as >some NFS services are hosted directly from the kernel. Is it still true, and if yes, are there any plans to improve this? (as a side note: why portmap binds to TCP socket with 0.0.0.0 ip address? portmasp.c, lines around 206 as of 1.10.2.2) Thanks in advace. Sincerely, D.Marck [DM5020, DM268-RIPE, DM3-RIPN] ------------------------------------------------------------------------ *** Dmitry Morozovsky --- D.Marck --- Wild Woozle --- marck@rinet.ru *** ------------------------------------------------------------------------ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020414210723.X7299-100000>