From owner-freebsd-current@FreeBSD.ORG Fri Mar 5 06:39:21 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6AE2116A4CE for ; Fri, 5 Mar 2004 06:39:21 -0800 (PST) Received: from anduin.net (anduin.net [212.12.46.226]) by mx1.FreeBSD.org (Postfix) with SMTP id 801EE43D31 for ; Fri, 5 Mar 2004 06:39:20 -0800 (PST) (envelope-from ltning-freebsd-current@anduin.net) Received: (qmail 87751 invoked by uid 6759); 5 Mar 2004 14:39:19 -0000 Received: from ltning-freebsd-current@anduin.net by anduin.net by uid 82 with qmail-scanner-1.20 (clamscan: 0.60. spamassassin: 2.60. Clear:RC:1(213.225.74.166):. Processed in 0.030366 secs); 05 Mar 2004 14:39:19 -0000 X-Qmail-Scanner-Mail-From: ltning-freebsd-current@anduin.net via anduin.net X-Qmail-Scanner: 1.20 (Clear:RC:1(213.225.74.166):. Processed in 0.030366 secs) Received: from eirik.unicore.no (HELO ?10.0.16.10?) (213.225.74.166) by anduin.net with SMTP; 5 Mar 2004 14:39:19 -0000 From: Eirik Oeverby To: Andy Hilker In-Reply-To: <20040305143523.GA63132@mail.crypta.net> References: <20040304170746.GA4259@mobile.acs-et.com> <20040305131718.GC1458@lewiz.org><20040305140609.GD1458@lewiz.org> <20040305143523.GA63132@mail.crypta.net> Content-Type: text/plain Message-Id: <1078497649.98622.20.camel@eirik.unicore.no> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.5.4FreeBSD GNOME Team Port Date: Fri, 05 Mar 2004 15:40:49 +0100 Content-Transfer-Encoding: 7bit cc: Lewis Thompson cc: current@freebsd.org Subject: Re: Jails in -CURRENT X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 05 Mar 2004 14:39:21 -0000 Hi, I've put up a webpage about my script and a download link. Have a look. Keep in mind that I have big plans for this, and progress is being made rapidly ;) http://anduin.net/?page=anduin&subpage=me&topic=jailctl /Eirik On Fri, 2004-03-05 at 15:35 +0100, Andy Hilker wrote: > > I have some pretty hefty jail configs too > > What about tools and management, what do you use? > Are you using real virtual systems with own filesystems or do you > mount from host system? > Do you have experiences with devfs rules? > Sorry if i asking too much, i am just curious :) > > > > me that if an ``exception'' (maybe it isn't even this?) is made, more > > might follow. > > Maybe no exception but a useful integration of a powerful jail > management... Main knobs in rc.conf, detailed config outsourced > (simple: see inetd.conf...) > > I am also wondering about a useful integration of jls and jexec. > In my scripts i use silly things like "grep all procs, see in /proc > which is running in this jail, kill it". > Very ineffecient, but effective. But jexec and jls are available > und useful now (btw. thanks!). > > Ok, i am curious what Mike Makonnen will do. > > I think, there is more documentation or hints needed. Many things > i have learned by using jails, but found it nowhere written down. > For example what to disable in rc.conf and cronjob "entropy". Entropy > makes heavy cpu load when running much jails. > And so on... > > Maybe someone could collect (i would do this) all experiences, tips, > hints, bugs, feature requests and so on. And then post and discuss > it here for next steps leading to more documentation and new tools.