From owner-freebsd-doc@FreeBSD.ORG  Wed Feb 10 13:33:29 2010
Return-Path: <owner-freebsd-doc@FreeBSD.ORG>
Delivered-To: freebsd-doc@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 651EF1065670;
	Wed, 10 Feb 2010 13:33:29 +0000 (UTC)
	(envelope-from mamalos@eng.auth.gr)
Received: from vergina.eng.auth.gr (vergina.eng.auth.gr [155.207.18.1])
	by mx1.freebsd.org (Postfix) with ESMTP id D9B028FC08;
	Wed, 10 Feb 2010 13:33:28 +0000 (UTC)
Received: from mamalacation.ee.auth.gr (mamalacation.ee.auth.gr
	[155.207.33.29])
	by vergina.eng.auth.gr (8.14.3/8.14.1) with ESMTP id o1ADXRGe019782;
	Wed, 10 Feb 2010 15:33:27 +0200 (EET)
	(envelope-from mamalos@eng.auth.gr)
Message-ID: <4B72B5A2.7000103@eng.auth.gr>
Date: Wed, 10 Feb 2010 15:33:22 +0200
From: George Mamalakis <mamalos@eng.auth.gr>
User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US;
	rv:1.9.1.5) Gecko/20100115 Thunderbird/3.0
MIME-Version: 1.0
To: Igor Mozolevsky <igor@hybrid-lab.co.uk>
References: <4B72A0DB.5010806@eng.auth.gr>
	<a2b6592c1002100510h404268edyb0d270e05529084f@mail.gmail.com>
In-Reply-To: <a2b6592c1002100510h404268edyb0d270e05529084f@mail.gmail.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Cc: freebsd-doc@freebsd.org, freebsd-stable <freebsd-stable@freebsd.org>
Subject: Re: A more secure approach of jail establishment. It could be
 included in jail chapter of fbsd handbook
X-BeenThere: freebsd-doc@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Documentation project <freebsd-doc.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-doc>,
	<mailto:freebsd-doc-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-doc>
List-Post: <mailto:freebsd-doc@freebsd.org>
List-Help: <mailto:freebsd-doc-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-doc>,
	<mailto:freebsd-doc-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 10 Feb 2010 13:33:29 -0000

On 10/02/2010 15:10, Igor Mozolevsky wrote:
> alling a full blown OS inside their jails?
> You do know that it is possible to have a jail with a single program
> inside and not much els
  Yes I do, but still in my configs I may need much more than just one 
program running in my jails, so I prefer the almost-full-OS option. 
Moreover, I find it also easier to maintain and troubleshoot, no matter 
how peculiar this may sound, since I don't have to chose only the files 
needed in each jail when I upgrade them, and I am able to run terminals 
in the jail, along with other which makes troubleshooting the jail easier.

Of course, this is just my opinion and I think it is more of a matter of 
"taste" on how someone would want to setup their jails.

Thank you for your answer.

-- 
George Mamalakis

IT Officer
Electrical and Computer Engineer (Aristotle Un. of Thessaloniki),
MSc (Imperial College of London)

Department of Electrical and Computer Engineering
Faculty of Engineering
Aristotle University of Thessaloniki

phone number : +30 (2310) 994379