From owner-freebsd-questions@FreeBSD.ORG Mon Apr 4 01:11:27 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DC6F216A4CE for ; Mon, 4 Apr 2005 01:11:27 +0000 (GMT) Received: from web61307.mail.yahoo.com (web61307.mail.yahoo.com [216.155.196.150]) by mx1.FreeBSD.org (Postfix) with SMTP id 5685A43D67 for ; Mon, 4 Apr 2005 01:11:27 +0000 (GMT) (envelope-from bill_ding5@yahoo.com) Received: (qmail 400 invoked by uid 60001); 4 Apr 2005 01:11:26 -0000 Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; b=3IJbNqgLxV3FDSeCo1ofEghSvdk6G0nLQwbcJ7FSMtDIMvKiPovhPH1eehcXKnW6wqVizncdQg73RGj3JNaJJGiKBXzevQrYLsOmRrY0acodxW73D+P9rhj/lWP6FSzBlJI6tpkfBb+FR/P7XDHm1obIG9wkaLrv70sWrIfAH8A= ; Message-ID: <20050404011126.398.qmail@web61307.mail.yahoo.com> Received: from [68.157.24.232] by web61307.mail.yahoo.com via HTTP; Sun, 03 Apr 2005 18:11:26 PDT Date: Sun, 3 Apr 2005 18:11:26 -0700 (PDT) From: Bill Ding To: freebsd-questions@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Subject: Fwd: RE: looking for jail tutorial X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 04 Apr 2005 01:11:28 -0000 --- bob@a1poweruser.com wrote: > You should search this lists archives for answers first. > In the list archives I found this. > > http://subwiki.honeypot.net/cgi-bin/view/Freebsd/JailAdmin > > > http://jailnotes.cg.nu/ > > > Does anyone have any bright ideas for good file system layouts > when > > running multiple jails? > > > -----Original Message----- > From: owner-freebsd-questions@freebsd.org > [mailto:owner-freebsd-questions@freebsd.org]On Behalf Of Bill Ding > Sent: Sunday, April 03, 2005 7:23 PM > To: freebsd-questions@freebsd.org > Subject: looking for jail tutorial > > Hello, > > Running 5.3-p6 on a box with two NICs. > > I'm new to the list and FreeBSD in general. I'm trying > to find more documentation on jail(8) than is offered > in the man page. (I checked the Handbook but couldn't > find anything about jails. Did I miss it?) For > instance, the man page says: > > NOTE: It is important that only appropriate device > nodes in devfs be exposed to a jail; access to disk > devices in the jail may permit processes in the jail > to > bypass the jail sandboxing by modifying files outside > of the jail. > > How do I know what the "appropriate device nodes" are > for a given jail? I want to run four jails: two > webservers, DNS, mail. After testing, the DNS and > email jails will be shutdown and the services moved to > separate machines. > Also, do I configure identical Hosts files on each? > Should the jails be on different subnets for added > security or can they all be on the same subnet as the > host machine? > Any help you can give would be appreciated! > > Thanx, > > Bill > Thanks for the response. I tried looking through the mail archives but the hits either more or less repeat the man page or deal with unrelated questions (or have nothing to do with jails at all). Also, I had already gone to both those sites, and neither answered my questions. Regards, Bill The word 'politics' describes the situation so well: 'poli' meaning 'many' and 'tics' meaning 'bloodsucking creatures'. __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com