From owner-freebsd-hackers@FreeBSD.ORG  Sun Nov 28 07:21:13 2004
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 1A5C216A4CE
	for <freebsd-hackers@freebsd.org>;
	Sun, 28 Nov 2004 07:21:13 +0000 (GMT)
Received: from mail06.syd.optusnet.com.au (mail06.syd.optusnet.com.au
	[211.29.132.187])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 55CE443D4C
	for <freebsd-hackers@freebsd.org>;
	Sun, 28 Nov 2004 07:21:12 +0000 (GMT)
	(envelope-from PeterJeremy@optushome.com.au)
Received: from cirb503493.alcatel.com.au
	(c211-30-75-229.belrs2.nsw.optusnet.com.au [211.30.75.229])
	iAS7L8HI001537
	(version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=NO);
	Sun, 28 Nov 2004 18:21:10 +1100
Received: from cirb503493.alcatel.com.au (localhost.alcatel.com.au
	[127.0.0.1])iAS7L7xP058867;	Sun, 28 Nov 2004 18:21:07 +1100 (EST)
	(envelope-from pjeremy@cirb503493.alcatel.com.au)
Received: (from pjeremy@localhost)iAS7L65Z058866;
	Sun, 28 Nov 2004 18:21:06 +1100 (EST)	(envelope-from pjeremy)
Date: Sun, 28 Nov 2004 18:21:06 +1100
From: Peter Jeremy <PeterJeremy@optushome.com.au>
To: Koen Martens <fbsd@metro.cx>
Message-ID: <20041128072106.GA56933@cirb503493.alcatel.com.au>
References: <20041126193800.GB11747@metro.cx>
	<20041126215843.GE47714@stack.nl> <20041127204309.GB19733@metro.cx>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20041127204309.GB19733@metro.cx>
User-Agent: Mutt/1.4.2i
cc: freebsd-hackers@freebsd.org
Subject: Re: Jail + sysv shmem
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 28 Nov 2004 07:21:13 -0000

On Sat, 2004-Nov-27 21:43:09 +0100, Koen Martens wrote:
>Why would one want access from the outside system to the jailed system?
>Is this something that is used frequently?

The sysadmin is likely to need access to:
1) look at SysV IPC usage across the entire system
2) clean up after a process has died unexpectedly.

Whilst it's possible for the sysadmin to enter the relevant jail and
look at what is used in that jail, it's very difficult to get an
overall view of the system in this way - especially if there are lots
of jails.

Robert Watson was also looking into this recently.

-- 
Peter Jeremy