From owner-freebsd-questions@FreeBSD.ORG Tue Jul 20 04:30:00 2010 Return-Path: Delivered-To: questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 26D541065676 for ; Tue, 20 Jul 2010 04:30:00 +0000 (UTC) (envelope-from aiza21@comclark.com) Received: from avmxsmtp3.comclark.com (avmxsmtp3.comclark.com [202.69.191.117]) by mx1.freebsd.org (Postfix) with ESMTP id B54B28FC14 for ; Tue, 20 Jul 2010 04:29:59 +0000 (UTC) X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: AiMSACfDREzKRaxEPGdsb2JhbAAHn3IBAQEBNcJyhSIEg32HGQ X-IronPort-AV: E=Sophos;i="4.55,230,1278259200"; d="scan'208";a="14027520" Received: from unknown (HELO [10.0.10.3]) ([202.69.172.68]) by avmxsmtp3.comclark.com with ESMTP; 20 Jul 2010 12:29:57 +0800 Message-ID: <4C452644.6060508@comclark.com> Date: Tue, 20 Jul 2010 12:29:56 +0800 From: Aiza User-Agent: Thunderbird 2.0.0.17 (Windows/20080914) MIME-Version: 1.0 To: "questions@freebsd.org" Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: Subject: new jail utility is available. announcement. X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Jul 2010 04:30:00 -0000 This is a news announcement to inform people who have interest in jails, that a new jail utility is available. http://sourceforge.net/projects/qjail/ Has a file suitable for the pkg_add command or the port make files can be downloaded and a "make install" run. Qjail [ q = quick ] is a 4th generation wrapper for the basic chroot jail system that includes security and performance enhancements. Plus a new level of "user friendliness" enhancements dealing with deploying just a few jails or large jail environments consisting of 100's of jails. Qjail requires no knowledge of the jail command usage. It uses "nullfs" for read-only system binaries, sharing one copy of them with all the jails. Uses "mdconfig" to create sparse image jails. Sparse image jails provide a method to limit the total disk space a jail can consume, while only occupying disk space of the sum size of the files in the image jail. Ability to assign ip address with their network device name, so aliases are auto created on jail start and auto removed on jail stop. Ability to create "ZONE"s of identical qjail systems, each with their own group of jails. Ability to designate a portion of the jail name as a group prefix so the command being executed will apply to only those jail names matching that prefix. Qjail reduces the complexities of small and large jail deployments to the novice level. Qjail has a fully documented manpage written for easy comprehension. Details are given to felicitate the use of qjail's capabilities to the fullest extent possible.